0012627: Plugin to enable login based upon Active Directory - MantisBT - Signup temporarily disabled due to spam

ID	Project	Category	View Status	Date Submitted	Last Update

0012627	mantisbt	plug-ins	public	2010-12-22 06:30	2013-02-01 09:06

Reporter	cas	Assigned To
Priority	normal	Severity	feature	Reproducibility	N/A
Status	new	Resolution	open
Product Version	1.2.4

Summary	0012627: Plugin to enable login based upon Active Directory
Description	This plugin allows for integrated login with AD credentials. If you installed Mantis under IIS and want to have single signon with AD, all you need to do is the following: Disable Anonymous access for the Mantis website Ensure Integrated Windows Authentication is ticked Activate this plugin Users listed in the user-table with their windows username, will be automatically logged on.
Additional Information	This plugin uses the function auth_attempt_script_login, which in the past was enough for getting access. As of version 1.2.x this function offers less functionality than before. This function is available in core\authentication_api.php In order to overcome this, one needs to add 3 lines at the end of this function: set the cookies $p_perm_login=false; auth_set_cookies( $t_user_id, $p_perm_login ); auth_set_tokens( $t_user_id ); Add these just before the comment line stating: ok, we're good to login now (around line 279) In addition, one can uncomment the line: user_increment_login_count( $t_user_id ); It should look like: user_increment_login_count( $t_user_id ); In that case still all logins are counted. The change mentioned above can bring additional security risks in case you Mantis is on the WWW opposite an intranet.
Tags	No tags attached.
Attached Files	adLogin101.zip (1,731 bytes)