Page MenuHomePhabricator
Create Task
Maniphest T8015

Permit limiting auth types for certain users (or email domain names)
Closed, WontfixPublic
Actions

Description

For our (open source) use case we have two types of users:

  • developers with LDAP accounts
  • users with username/password accounts

We'd like developers that have LDAP accounts to not also have a username/password combination. This is both to reduce confusion (which username/password am I supposed to use?) and for security and auditing reasons.

However, non-developers do not have an LDAP account and should be able to log in using a username and password.

It would be nice to limit user/pass authentication to users without "@example.com" addresses, while LDAP login should be restricted to only those with "@example.com" addresses (this is actually implicit in our setup).

Event Timeline

eadler created this task.May 1 2015, 2:43 AM
eadler raised the priority of this task from to Needs Triage.
eadler updated the task description. (Show Details)
eadler added a project: Auth.
eadler added a subscriber: eadler.
epriestley closed this task as Wontfix.May 3 2015, 11:12 PM
epriestley claimed this task.
epriestley added a subscriber: epriestley.

This use case is very far outside the mainstream and not a good fit for the upstream.

Phabricator · Built by Phacility