Better support for HTPP authentication, especially Kerberos/SPNEGO variety
Single Sign-on is a very convenient feature to have in an organization, and for web services (on apache, at least) it’s very conveniently provided by mod_auth_kerb.
However, there is a problem preventing its use with bbPress, namely user name handling.
Kerberos user names are of the form user@DOMAIN.TLD. bbPress username sanitization rules are too strict and strip the ‘@’ character outright. And anyway, domain concept is not supported throughout the code and in underlying database.
Moreover, the whole HTTP auth support (purportedly, a basic thing in any web app) relies on external and somewhat broken plugin (it uses bb_user_exists deprecated function, which is not working properly in 1.0, or at least it seems so to me).
In my most extant dreams (phpbb style , SPNEGO auth plugin should be also able to query an LDAP database (which is most often present in such set-ups) for extra user info.
- You must be logged in to reply to this topic.