Authorization through Redmine
Added by Артем Саватеев over 8 years ago
We use Redmine as a centralized system - it a task management, and finance, and document management - in short almost everything that we need.
But there is a problem - we do not have programming in Ruby, so to create the necessary plug-ins, we can not. We have a some of external support services, but the problem is that all you need to create users, and it turns out that each employee need to memorize a bunch of passwords for access to each system.
Hence the question - is it possible to somehow (maybe there is a plugin or hook) to log in to external sites using the user data from the Redmine?
First idea - was to request access to the REST API and depending on the response (201, 400) to authorize the user, but it seems to me it's not safe.
Tell me, please, whether encountered someone with such a problem and how to solve it?
P.S.: I apologize for any mistakes - English is not the native language, use a translator.
Replies (3)
RE: Authorization through Redmine - Added by Артем Саватеев over 8 years ago
Or maybe someone say how Redmine generate "hashed_password" in DB, that I can create a script for outside authentication))
RE: Authorization through Redmine - Added by Wim DePreter over 8 years ago
Maybe you should use LDAP to authenticate the users (https://www.redmine.org/projects/redmine/wiki/RedmineLDAP).
That way, user-info (passwords, ...) is not maintained in Redmine, only access to projects (via roles) must be configured in Redmine.
RE: Authorization through Redmine - Added by Артем Саватеев over 8 years ago
LDAP is too much) I want to use a minimum of external services)
I found in the scripts of Redmine hash algorithm generation, and wrote a small PHP script performs similarity OAuth, uses the Redmine as the user repository. Just added to check user groups for manage rights in external systems.
Yes, I'm a weirdo)