[katello-devel] default orgs for LDAP users
Eric Helms
ehelms at redhat.com
Tue Aug 28 19:41:40 UTC 2012
+1 to #1
Even with 0 permissions, I don't think users should be assumed to be in an org, even if there is only one. Explicit setting over implicit.
----- Original Message -----
From: "Jordan OMara" <jomara at redhat.com>
To: "Justin Sherrill" <jsherril at redhat.com>
Cc: katello-devel at redhat.com
Sent: Tuesday, August 28, 2012 3:06:15 PM
Subject: Re: [katello-devel] default orgs for LDAP users
On 28/08/12 15:00 -0400, Justin Sherrill wrote:
>On 08/28/2012 02:55 PM, Jordan OMara wrote:
>
>My vote would be for #1. I'm wary of giving a user permission to
>something automatically.
>
>Is there some way for the admin user to 'prepopulate' users from
>LDAP? So they could set up roles and assign orgs at that time?
>(This way it doesn't have to be a 2 step process)
>
Yes, absolutely, but we currently don't whitelist those users. ANY
valid LDAP login works, you just have 0 permissions
--
Jordan O'Mara <jomara at redhat.com>
Red Hat Engineering, Raleigh
_______________________________________________
katello-devel mailing list
katello-devel at redhat.com
https://www.redhat.com/mailman/listinfo/katello-devel
More information about the katello-devel
mailing list