Authentication

From PartKeepr Wiki
Revision as of 12:44, 12 October 2015 by Felicitus (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

PartKeepr supports various authentication methods, this page describes the different types.

Regular Authentication (WSSE)

This is the default authentication and is recommended for new installations.

Users are created with a SHA512 hash and authentication is done via WSSE. To configure this provider, set the authentication provider within your app/config/parameters.php file:

$container->setParameter('authentication_provider', 'PartKeepr.Auth.WSSEAuthenticationProvider');

Legacy Authentication (HTTP Basic)

This method is used to authenticate legacy users, which are stored with an MD5 hash. This is considered insecure and you should migrate your users as soon as possible. This method only works in conjunction with the HTTP Basic Authentication provider.

You can migrate users by opening the user in the user manager, let the user re-type his password and click save. The user is then saved in the new format. Once you have done that for all users, verify that all users are migrated.

To configure this provider, set the authentication provider within your app/config/parameters.php file:

$container->setParameter('authentication_provider', 'PartKeepr.Auth.HTTPBasicAuthenticationProvider');

LDAP Authentication (HTTP Basic)

This method is used to authenticate via an LDAP server and only works in conjunction with HTTP Basic.

To configure this provider, set the authentication provider within your app/config/parameters.php file:

$container->setParameter('authentication_provider', 'PartKeepr.Auth.HTTPBasicAuthenticationProvider');