Details

    • Type: Improvement Improvement
    • Status: Open
    • Priority: Minor Minor
    • Resolution: Unresolved
    • Affects Version/s: 1.8.5
    • Fix Version/s: DEV backlog
    • Component/s: Authentication
    • Labels:
      None
    • Environment:
      Mysql 5.XX
      php 4.XX
    • Database:
      MySQL
    • Affected Branches:
      MOODLE_18_STABLE
    • Rank:
      4407

      Description

      external db authentication is not case sensitive username field. So if external database auth we have an username that appears like username "11M" but his first log was like "11m",then internal account will be "11m". and "11M" always fails.
      Moreover db auth sync users fails too because usernames dont match.

        Activity

        Michael Perez created issue -
        Michael Perez made changes -
        Field Original Value New Value
        Component/s Accessibility [ 10083 ]
        Component/s Authentication [ 10067 ]
        Description Hi. Using external db authentication, when an user is logged first time his account is created but if in the database appears like username "248S" and the user logged like "248s", his username definitely will be "248s" so next time authentication with uppercase fails and script db sync users too. I suppose username shoud be case sensitive. Closed.
        Priority Major [ 3 ] Trivial [ 5 ]
        Michael Perez made changes -
        Security Minor security issue [ 10001 ]
        Michael Perez made changes -
        Issue Type Bug [ 1 ] Improvement [ 4 ]
        Component/s Authentication [ 10067 ]
        Component/s Accessibility [ 10083 ]
        Michael Perez made changes -
        Summary external db authentication authentication
        Database [MySQL]
        Michael Perez made changes -
        Summary authentication external db authentication
        Issue Type Improvement [ 4 ] Bug [ 1 ]
        Database [MySQL]
        Description Closed. Using first time external db authentication is not case sensitive username field. So if external database auth we have an username that appears like "11M" but his first log was like "11m", internal account will be "11m".
        Moreover if db auth sync users runs after, fails because usernames dont match.
        Security Possible security issue [ 10002 ]
        Priority Trivial [ 5 ] Minor [ 4 ]
        Michael Perez made changes -
        Description Using first time external db authentication is not case sensitive username field. So if external database auth we have an username that appears like "11M" but his first log was like "11m", internal account will be "11m".
        Moreover if db auth sync users runs after, fails because usernames dont match.
        Using first time external db authentication is not case sensitive username field on first loggin. So if external database auth we have an username that appears like "11M" but his first log was like "11m", internal account will be "11m".
        Moreover if db auth sync users runs after, fails because usernames dont match.
        Michael Perez made changes -
        Description Using first time external db authentication is not case sensitive username field on first loggin. So if external database auth we have an username that appears like "11M" but his first log was like "11m", internal account will be "11m".
        Moreover if db auth sync users runs after, fails because usernames dont match.
        external db authentication is not case sensitive username field on first loggin. So if external database auth we have an username that appears like "11M" but his first log was like "11m", internal account will be "11m".
        Moreover if db auth sync users runs after, fails because usernames dont match.
        Hide
        Petr Škoda added a comment -

        I ma afraid only lowercase usernames are supported by moodle, the usernames in external db will have to be created in lowercase

        Show
        Petr Škoda added a comment - I ma afraid only lowercase usernames are supported by moodle, the usernames in external db will have to be created in lowercase
        Michael Perez made changes -
        Description external db authentication is not case sensitive username field on first loggin. So if external database auth we have an username that appears like "11M" but his first log was like "11m", internal account will be "11m".
        Moreover if db auth sync users runs after, fails because usernames dont match.
        external db authentication is not case sensitive username field on first loggin. So if external database auth we have an username that appears like username "11M" but his first log was like "11m",then internal account will be "11m". and "11M" always fails.
        Moreover db auth sync users fails too because usernames dont match.
        Michael Perez made changes -
        Issue Type Bug [ 1 ] Improvement [ 4 ]
        Security Possible security issue [ 10002 ]
        Michael Perez made changes -
        Description external db authentication is not case sensitive username field on first loggin. So if external database auth we have an username that appears like username "11M" but his first log was like "11m",then internal account will be "11m". and "11M" always fails.
        Moreover db auth sync users fails too because usernames dont match.
        external db authentication is not case sensitive username field. So if external database auth we have an username that appears like username "11M" but his first log was like "11m",then internal account will be "11m". and "11M" always fails.
        Moreover db auth sync users fails too because usernames dont match.
        Hide
        Michael Perez added a comment -

        Ok Petr, thanks. It change issue to improvement.

        Show
        Michael Perez added a comment - Ok Petr, thanks. It change issue to improvement.
        Hide
        Jeffrey Silverman added a comment -

        Why? Why does Moodle only accept lowercase usernames? How about numbers? How about underscores or other non-alphanumeric characters?

        Thank you!

        Show
        Jeffrey Silverman added a comment - Why? Why does Moodle only accept lowercase usernames? How about numbers? How about underscores or other non-alphanumeric characters? Thank you!
        Martin Dougiamas made changes -
        Workflow jira [ 26883 ] MDL Workflow [ 43499 ]
        Petr Škoda made changes -
        Assignee Petr Škoda (skodak) [ skodak ] moodle.com [ moodle.com ]
        Fix Version/s DEV backlog [ 10464 ]
        Martin Dougiamas made changes -
        Workflow MDL Workflow [ 43499 ] MDL Full Workflow [ 71893 ]

          People

          • Votes:
            1 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

            • Created:
              Updated: