Difference between revisions of "Authentication"
(Created page with "PartKeepr supports various authentication methods, this page describes the different types. = Regular Authentication (WSSE) = This is the default authentication and is recom...") |
|||
| Line 5: | Line 5: | ||
This is the default authentication and is recommended for new installations. | This is the default authentication and is recommended for new installations. | ||
| − | Users are created with a [https://en.wikipedia.org/wiki/SHA-2 SHA512 hash] and authentication is done via [https://en.wikipedia.org/wiki/WS-Security WSSE]. To configure this provider, set the authentication provider within your '' | + | Users are created with a [https://en.wikipedia.org/wiki/SHA-2 SHA512 hash] and authentication is done via [https://en.wikipedia.org/wiki/WS-Security WSSE]. To configure this provider, set the authentication provider within your '''app/config/parameters.php''' file: |
<pre> | <pre> | ||
| Line 15: | Line 15: | ||
This method is used to authenticate legacy users, which are stored with an MD5 hash. This is considered insecure and you should migrate your users as soon as possible. This method only works in conjunction with the HTTP Basic Authentication provider. | This method is used to authenticate legacy users, which are stored with an MD5 hash. This is considered insecure and you should migrate your users as soon as possible. This method only works in conjunction with the HTTP Basic Authentication provider. | ||
| − | To configure this provider, set the authentication provider within your '' | + | You can migrate users by opening the user in the user manager, let the user re-type his password and click save. The user is then saved in the new format. Once you have done that for all users, verify that all users are migrated. |
| + | |||
| + | To configure this provider, set the authentication provider within your '''app/config/parameters.php''' file: | ||
<pre> | <pre> | ||
| Line 25: | Line 27: | ||
This method is used to authenticate via an LDAP server and only works in conjunction with HTTP Basic. | This method is used to authenticate via an LDAP server and only works in conjunction with HTTP Basic. | ||
| − | To configure this provider, set the authentication provider within your '' | + | To configure this provider, set the authentication provider within your '''app/config/parameters.php''' file: |
<pre> | <pre> | ||
$container->setParameter('authentication_provider', 'PartKeepr.Auth.HTTPBasicAuthenticationProvider'); | $container->setParameter('authentication_provider', 'PartKeepr.Auth.HTTPBasicAuthenticationProvider'); | ||
</pre> | </pre> | ||
Latest revision as of 13:44, 12 October 2015
PartKeepr supports various authentication methods, this page describes the different types.
Regular Authentication (WSSE)
This is the default authentication and is recommended for new installations.
Users are created with a SHA512 hash and authentication is done via WSSE. To configure this provider, set the authentication provider within your app/config/parameters.php file:
$container->setParameter('authentication_provider', 'PartKeepr.Auth.WSSEAuthenticationProvider');
Legacy Authentication (HTTP Basic)
This method is used to authenticate legacy users, which are stored with an MD5 hash. This is considered insecure and you should migrate your users as soon as possible. This method only works in conjunction with the HTTP Basic Authentication provider.
You can migrate users by opening the user in the user manager, let the user re-type his password and click save. The user is then saved in the new format. Once you have done that for all users, verify that all users are migrated.
To configure this provider, set the authentication provider within your app/config/parameters.php file:
$container->setParameter('authentication_provider', 'PartKeepr.Auth.HTTPBasicAuthenticationProvider');
LDAP Authentication (HTTP Basic)
This method is used to authenticate via an LDAP server and only works in conjunction with HTTP Basic.
To configure this provider, set the authentication provider within your app/config/parameters.php file:
$container->setParameter('authentication_provider', 'PartKeepr.Auth.HTTPBasicAuthenticationProvider');
