Re: [DISCUSS] [GSoC] Caching of password on Cloudstack side

2013-07-02 Thread Sebastien Goasguen
On Jul 2, 2013, at 9:46 AM, Ian Duffy wrote: >> A user should probably be tied to a specific authenticator (IMO only), >> so that there isn't a backdoor option for getting them into the >> system. > > This is an issue I have come across too. With the way the > authenticators are implemented it

Re: [DISCUSS] [GSoC] Caching of password on Cloudstack side

2013-07-02 Thread Ian Duffy
> A user should probably be tied to a specific authenticator (IMO only), > so that there isn't a backdoor option for getting them into the > system. This is an issue I have come across too. With the way the authenticators are implemented it would be very easy for a user to keep their account despi

Re: [DISCUSS] [GSoC] Caching of password on Cloudstack side

2013-07-02 Thread Chip Childers
On Tue, Jul 02, 2013 at 12:58:06PM +0100, Ian Duffy wrote: > tldr: should ldap passwords be cached within cloudstack? > > Hi Guys, > > I wanted to get your opinion on something. I seen a JIRA ticket for > adding support for multiple LDAP because if the single LDAP server > fails you lose access t