Skip to content

Monkeypatch out checking for affiliation, as berkeleyEduAffiliations … #140

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 1, 2018
Merged

Monkeypatch out checking for affiliation, as berkeleyEduAffiliations … #140

merged 2 commits into from
Oct 1, 2018

Conversation

@bzh-bzh
Copy link
Contributor

@bzh-bzh bzh-bzh commented Oct 1, 2018
edited
Loading

…is being removed from anonymous LDAP searches.

please let me know if i missed anything for account creation that uses this attribute

@bzh-bzh bzh-bzh force-pushed the ldap-affil-monkeypatch branch from 38ad21e to 02ee742 Compare October 1, 2018 04:27
abizer
abizer approved these changes Oct 1, 2018
View reviewed changes
Copy link
Member

@abizer abizer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You'll need to fix the tests, and I don't think this will actually successfully deploy until I can fix puppetdb, which I will work on.

jvperrin
jvperrin approved these changes Oct 1, 2018
View reviewed changes
Copy link
Member

@jvperrin jvperrin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good besides the tests.

I'd also put a TODO comment by each of these to let people know that they should be re-enabled in the future. Generally otherwise, I'd assume commented-out code could be removed, so giving some reason for why it should stay is a good practice.

kkuehlz
kkuehlz approved these changes Oct 1, 2018
View reviewed changes
Copy link
Member

@kkuehlz kkuehlz left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks!

heads up: you might want to truncate the first line of your commit. wraps after 72 chars

@bzh-bzh bzh-bzh force-pushed the ldap-affil-monkeypatch branch from 02ee742 to 6ea4125 Compare October 1, 2018 05:05
@bzh-bzh
Monkeypatch out checking for affiliation.
e85df56 
berkeleyEduAffiliations is being removed from anonymous LDAP searches.
@bzh-bzh
Skip affiliation test for now.
a7f4598
@bzh-bzh bzh-bzh force-pushed the ldap-affil-monkeypatch branch from f9af792 to a7f4598 Compare October 1, 2018 05:49
kpengboy
kpengboy approved these changes Oct 1, 2018
View reviewed changes
ocflib/vhost/web.py
attrs_ucb = user_attrs_ucb(attrs['calnetUid'])
if attrs_ucb and 'EMPLOYEE-TYPE-ACADEMIC' in attrs_ucb['berkeleyEduAffiliations']:
# TODO: Uncomment when we get a privileged LDAP bind.
if attrs_ucb: # and 'EMPLOYEE-TYPE-ACADEMIC' in attrs_ucb['berkeleyEduAffiliations']:
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This will permit arbitrary members of the OCF to submit vhost requests. You ought to be prepared for that.

@jvperrin jvperrin merged commit a443fc8 into ocf:master Oct 1, 2018
@abizer abizer mentioned this pull request Oct 11, 2018
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jvperrin jvperrin jvperrin approved these changes

@abizer abizer abizer approved these changes

@kpengboy kpengboy kpengboy approved these changes

@kkuehlz kkuehlz kkuehlz approved these changes

@chriskuehl chriskuehl Awaiting requested review from chriskuehl

@dkess dkess Awaiting requested review from dkess

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@bzh-bzh @jvperrin @abizer @kpengboy @kkuehlz