[privacyidea/privacyidea] Make remote_user aware of Split@Sign option (#2291)

From: notifications@github.com
Domain: IP info github.com
MX-server: IP info out-23.smtp.github.com
Size: 3661 Bytes
Create: 2020-07-09
Update: 2020-07-13
Score: 0
Safe: Yes

Outbound domains: github.com |

Move the check for Split@Sign into the split_user() function. This way it
applies to all calls for (not) splitting the username into user and realm.

Also the remote user policy wasn't checked correctly. If set to disable,
the log-in with a remote user was still possible. This is fixed now.

Fixes #1954

You can view, comment on, or merge this pull request online at:


Commit Summary

  • Make remote_user aware of Split@Sign option

File Changes

  • M privacyidea/api/auth.py (7)
  • M privacyidea/api/lib/prepolicy.py (28)
  • M privacyidea/lib/user.py (30)
  • M tests/test_api_auth.py (114)
  • M tests/test_api_lib_policy.py (46)
  • M tests/testdata/passwords (1)

Patch Links:

  • https://github.com/privacyidea/privacyidea/pull/2291.patch
  • https://github.com/privacyidea/privacyidea/pull/2291.diff

You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or unsubscribe.

Want to protect your real email from messages like this? Use TempM email and be more secure on the internet.