Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

LDAP/AD allow setting default roles like #create #731

Open
gitblit opened this issue Aug 12, 2015 · 5 comments
Open

LDAP/AD allow setting default roles like #create #731

gitblit opened this issue Aug 12, 2015 · 5 comments
Assignees
@gitblit
Labels
🐱 Enhancement Priority-Medium Status-Accepted Topic: LDAP

Comments

@gitblit
Copy link
Collaborator

gitblit commented Aug 12, 2015

Originally reported on Google Code with ID 435

What steps will reproduce the problem?
1. set git.defaultAuthorizationControl = AUTHENTICATED in gitblit.properties.
2. Login as a AD user (previously non-existant in blit) in blit web UI.
3. Try to look for "create new repository" function.

What is the expected output? What do you see instead?
No create new repository functionality seems to be available.

What version of the product are you using? On what operating system?
Blit 1.5.0 WAR on Windows tomcat.

Please provide any additional information below.

This might not be a real bug.. but I just could not figure out how can the AD authenticated
user can create new repository without administrator's intervention. The 'git.defaultAuthorizationControl'
property seems like the key .. but changing from NAMED to AUTHENTICATED did not bring
any  perceivable change.

Reported by dharapvj on 2014-05-23 09:16:14
@gitblit
Copy link
Collaborator Author

gitblit commented Aug 12, 2015 

They can't.  You'll have to manually edit the user object and check the create personal
repositories checkbox.

git.defaultAuthorizationControl is for git repository transport authorization, not
for repo creation.

Reported by James.Moger on 2014-05-23 11:56:17

@gitblit gitblit self-assigned this Aug 12, 2015
@gitblit
Copy link
Collaborator Author

gitblit commented Aug 12, 2015 

Hi James, thanks for the reply.

Can I know the reason for such design decision? This way, as an Administrator, I must
edit every AD user before they can start using the blit as their own personal repository.

Would you consider such setting be allowed as "opt-in" user setting in blit.properties
as a feature request? 

As an administrator, I would like to have the end users direct access to create the
personal repositories as long as they are authenticated.

Reported by dharapvj on 2014-05-25 06:10:34

@gitblit
Copy link
Collaborator Author

gitblit commented Aug 12, 2015 

It wasn't a decision, it was an omission.  There should be a setting to enable this,
by default, for all users.

Reported by James.Moger on 2014-05-27 01:14:00

@gitblit
Copy link
Collaborator Author

gitblit commented Aug 12, 2015 

Hi James, any love to this request in upcoming releases?

Reported by dharapvj on 2014-10-22 09:48:24

@gitblit
Copy link
Collaborator Author

gitblit commented Aug 12, 2015 

I must have overlooked this because of the title.

One of the primary improvements to 1.7.0 will be overhauling ownership/admin powers.
 I'll try to remember to include this request in that effort.

Reported by James.Moger on 2014-10-22 12:12:53

  • Status changed: Accepted
  • Labels added: Milestone-1.7.0

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gitblit gitblit

Labels
🐱 Enhancement Priority-Medium Status-Accepted Topic: LDAP
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@gitblit @flaix