[pmwiki-users] Login issue with JITS

Tegan Dowling tmdowling at gmail.com
Fri May 18 15:20:18 CDT 2007


On 5/18/07, info at hassanein.ch <info at hassanein.ch> wrote:
>
> Quoting Tegan Dowling <tmdowling at gmail.com>:
>
> > On 5/17/07, info at hassanein.ch <info at hassanein.ch> wrote:
> >>
> >> Quoting Hladůvka Jiří <mail at revida.sk>:
> >>
> >>> The Editor napsal(a):
> >>>>> That's the behaviour I would like to have!
> >>>>> I have a similar configuration as you have, but as mentionde before,
> I
> >>>>> will remain on the login page, despite successful login.
> >>>>>
> >>>>> Somebody mentioned the parameter 'nextpage' - where and how can I
> >>>>> resolve this issue?
> >>>>
> >>>>
> >>>> Nextpage is only a factor if you are using ZAP for your member
> >>>> authentication. If you are using the standard AuthUser authorization
> >>>> form that parameter does nothing. At this point it seems pretty clear
> >>>> you are not using ZAP.
> >>>>
> >>>
> >>> IMO the proble has nothing to do with ZAP as the link is not placed
> >>> in any form (- I suppose; Mike is using ZAP as the problem occures
> >>> in his JITS page). Perhaps Tegan is right saying :
> >>> "if user A logs in with his name and instead *his* password enters the
> >>> password set for e.g. "Read" which is not bound to any user, then the
> >>> the user stays in the login page"
> >>>
> >>> Mike, try to create some user with an *original* password in your
> >>> Site.Authuser and try to login. Put the link e.g. into
> Main.Wikisandbox
> >>> [[Main.Wikisandbox?action=login|Login]]
> >>
> >> I am using AuthUser and the authentication goes through a LDAP server.
> >>
> >> I made some tests.
> >> 1) If I make the authentication throught 'edit' then I end up in the
> >> edit page after the authentication
> >>
> >> 2) If I make the authentication through ?action=login, I end up in the
> >> login page despite successful authentication. It is independent of ZAP
> >> etc.
> >
> >
> > But you haven't said:  When you log in, are you using the password
> assigned
> > to an individual, or are you using one that's assigned in the
> > config.phpfile or via the ?action=attr?
>
> In config.php I say that the authentication goes through a LDAP call,
> I do not use ?action=attr.
> Is that the information you meant?


And so, every time someone logs in, they have to provide their own,
personal, user-specific password (as maintained and controlled by the LDAP
stuff), *not* a system-wide user password.  Right?

If so, then even though this setup has the problem of failing to return the
user to the page after ?action=login, the problem is happening under
different (evident) conditions than those under which I experience it.  Is
that not a useful clue for someone?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: /pipermail/pmwiki-users/attachments/20070518/7cb72f8d/attachment.html 


More information about the pmwiki-users mailing list