projects / working / Evergreen.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: f42279b) | patch
LP#1786552: optionally restrict auth_proxy login by home OU
authorJeff Davis <jeff.davis@bc.libraries.coop>
Fri, 8 Feb 2019 21:59:14 +0000 (13:59 -0800)
committerJeff Davis <jdavis@sitka.bclibraries.ca>
Fri, 8 Feb 2019 23:41:32 +0000 (15:41 -0800)
commit1b0148d51e6345c5bb3851910b07cb0130c9c2f6
tree98f63035fb97bef1c3bc810ef00ff1b6dbe32302tree
parentf42279bb67ac7387392cfae50cb371b630a6728ecommit | diff
LP#1786552: optionally restrict auth_proxy login by home OU

This adds a new restrict_by_home_ou setting to auth_proxy authenticator
config.  When enabled, if the login request includes an org param, the
authenticator will refuse to authenticate a user unless their home OU
matches or is a descendant of that org; login fails and auth_proxy
proceeds to the next configured authenticator.

Signed-off-by: Jeff Davis <jeff.davis@bc.libraries.coop>
Open-ILS/examples/opensrf.xml.example diff | blob | history
Open-ILS/src/perlmods/lib/OpenILS/Application/AuthProxy.pm diff | blob | history
Evergreen ILS