[Fusionforge-commits] FusionForge branch Branch_5_3 updated. a076bd3c48cd69ceb28db34c19b5f3e4c41d88b5

Franck Villaume nerville at fusionforge.org
Sun Apr 19 19:45:24 CEST 2015


This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "FusionForge".

The branch, Branch_5_3 has been updated
       via  a076bd3c48cd69ceb28db34c19b5f3e4c41d88b5 (commit)
      from  dfc36f1da7c89e9bab5e7c715921198a783e0cc8 (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit a076bd3c48cd69ceb28db34c19b5f3e4c41d88b5
Author: Franck Villaume <franck.villaume at trivialdev.com>
Date:   Sun Apr 19 19:43:54 2015 +0200

    fix [#767] plugin AuthLDAP: user can login even if user status is suspended

diff --git a/src/CHANGES b/src/CHANGES
index 88fd3fb..2d2d74c 100644
--- a/src/CHANGES
+++ b/src/CHANGES
@@ -11,6 +11,7 @@ Fusionforge-5.3.3:
 * PM: fix test on success [#762] (TrivialDev)
 * PM: fix allow new tasks without replace older one [#761] patch from Philipp Keidel (TrivialDev)
 * Plugin AuthLDAP: error and warning messages displayed twice [#732] (TrivialDev)
+* Plugin AuthLDAP: fix check user status before login [#767] (TrivialDev)
 * Plugin scmhook: fix display when only one SCM plugin enabled [#735] (TrivialDev)
 * Plugin Hudson: fix global status in Hudson Job widget [#740] (TrivialDev)
 * Plugin Hudson: delete jobs on project deletion [#742] (TrivialDev)
diff --git a/src/plugins/authldap/www/post-login.php b/src/plugins/authldap/www/post-login.php
index 2d5114d..5d4bda3 100644
--- a/src/plugins/authldap/www/post-login.php
+++ b/src/plugins/authldap/www/post-login.php
@@ -72,7 +72,7 @@ if ($login) {
 		exit_form_double_submit();
 	}
 	$test = $plugin->checkLDAPCredentials(strtolower($form_loginname),$form_pw);
-	if ($test == FORGE_AUTH_AUTHORITATIVE_ACCEPT) {
+	if ($test == FORGE_AUTH_AUTHORITATIVE_ACCEPT && user_get_object_by_name($form_loginname)->getStatus() == 'A') {
 		if ($plugin->isSufficient()) {
 			$plugin->startSession($form_loginname);
 		}

-----------------------------------------------------------------------

Summary of changes:
 src/CHANGES                             |    1 +
 src/plugins/authldap/www/post-login.php |    2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)


hooks/post-receive
-- 
FusionForge



More information about the Fusionforge-commits mailing list