Automatically create local users on successful LDAP authentication
|Reported by:||Olivier Mehani||Owned by:|
|Component:||programming||Keywords:||auth_ldap, allow_registration, email|
With the auth_ldap plugin, users can be authenticated against an LDAP directory. However, upon first logging in, the MG database does not contain information about them, and asks for their email address. Moreover, if registration is disabled, users will not be able to move any further after entering their email address, and will be presented with a message that registration is not enabled.
Two things need to be fixed:
- Try to get the email address from LDAP after successful authentication, and only ask the user for it if not available
- Don't honour the allow_registration setting when creating local users in the DB when they have been successfully authenticated from LDAP.