Greg greg
  • Joined on 2018-11-05
greg pushed to master at kosmos/chef 2020-02-20 13:34:17 +00:00
f34513220e Merge branch 'feature/130-remove_antispam' of kosmos/chef into master
c4fdf1779f Remove the CleanTalk Antispam extension
Compare 2 commits »
greg closed issue kosmos/chef#130 2020-02-20 13:34:17 +00:00
Remove CleanTalk from wiki.kosmos.org
greg created pull request kosmos/chef#138 2020-02-20 13:33:57 +00:00
Remove the CleanTalk Antispam extension
greg pushed to feature/130-remove_antispam at kosmos/chef 2020-02-20 13:32:24 +00:00
c4fdf1779f Remove the CleanTalk Antispam extension
greg pushed to master at kosmos/chef 2020-02-20 13:30:44 +00:00
6f7474b4d1 Update the Mediawiki extensions
greg deleted branch feature/127-new_ldap_dir_structure from kosmos/chef 2020-02-20 13:29:20 +00:00
greg merged pull request kosmos/chef#137 2020-02-20 13:29:08 +00:00
Enable LDAP on the XMPP kosmos.org vhost and use the new dir structure in Mediawiki
greg merged pull request kosmos/chef#137 2020-02-20 13:29:08 +00:00
Enable LDAP on the XMPP kosmos.org vhost and use the new dir structure in Mediawiki
greg pushed to master at kosmos/chef 2020-02-20 13:29:08 +00:00
c01f5c1038 Merge branch 'feature/127-new_ldap_dir_structure' of kosmos/chef into master
90a0e6be9f Enable LDAP on the kosmos.org vhost
276daf0ed7 Switch the Mediawiki config to the new LDAP dir structure
Compare 3 commits »
greg commented on issue kosmos/chef#123 2020-02-20 08:59:52 +00:00
Enable LDAP support on ejabberd

I have sent the emails with a unique generated temporary password and instructions for users without a wiki account, and with instructions for users with a a wiki account

greg commented on pull request kosmos/chef#137 2020-02-19 11:32:08 +00:00
Enable LDAP on the XMPP kosmos.org vhost and use the new dir structure in Mediawiki

I have rewritten the commit message:

Disable the LDAPAuthorization plugin. The LDAPAuthentication2 plugin is still used to authenticate users, but every kosmos.org user has access to the wiki. See https://www.mediawiki.org/wiki/Extension:PluggableAuth for the distinction between authentication and authorization

greg pushed to feature/127-new_ldap_dir_structure at kosmos/chef 2020-02-19 11:31:21 +00:00
90a0e6be9f Enable LDAP on the kosmos.org vhost
276daf0ed7 Switch the Mediawiki config to the new LDAP dir structure
1f6273373e Enable LDAP on the kosmos.org vhost
653b7c6feb Switch the Mediawiki config to the new LDAP dir structure
Compare 4 commits »
greg created pull request kosmos/chef#137 2020-02-18 14:49:36 +00:00
WIP: Enable LDAP on the XMPP kosmos.org vhost and use the new dir structure in Mediawiki
greg pushed to feature/127-new_ldap_dir_structure at kosmos/chef 2020-02-18 14:48:15 +00:00
1f6273373e Enable LDAP on the kosmos.org vhost
653b7c6feb Switch the Mediawiki config to the new LDAP dir structure
greg commented on issue kosmos/chef#123 2020-02-18 12:05:10 +00:00
Enable LDAP support on ejabberd

I have added the date and time of the switch to the email, as well as created a second email template for users that already had a Wiki account: https://cryptpad.fr/code/#/2/code/edit/uBJev+Y8s1El0zX-ElnleEfQ/

I will pair with @galfert on the switch, we have set the date to Thursday at 13:00 GMT

greg commented on issue kosmos/chef#127 2020-02-18 11:45:06 +00:00
Change LDAP directory structure to accommodate multiple domains

Why do we have to filter anything? We agreed that every user should have a wiki account, no matter what (and that we may want to do the same with other accounts, like e.g. personal Gitea accounts).

Yes, in the end removing the LDAPAuthorization Mediawiki extension works in this case, no need for filtering. I'm pushing a PR with the config changes

greg commented on issue kosmos/chef#123 2020-02-18 11:37:29 +00:00
Enable LDAP support on ejabberd

Regarding the steps/checklist: I think the emails should be sent out before the switch, and they should contain the date and time for when their password stops working, no?

Yes, I have updated the steps. I will change the email in the pad and will announce the switch date and time as soon as it's set

greg opened issue kosmos/chef#136 2020-02-18 11:06:40 +00:00
Upgrade ejabberd to 20.2 when it is released
greg commented on issue kosmos/chef#127 2020-02-17 21:19:10 +00:00
Change LDAP directory structure to accommodate multiple domains

Moved from the ejabberd issue:

I ran into an issue with MediaWiki in my VM when using the new LDAP schema. I was preparing the config for MediaWiki, and I cannot make the LDAP authorization work using the filtered role. It looks like we have to use an attribute directly to perform the auth check in the MediaWiki config. I will take another look at this tomorrow

greg commented on issue kosmos/chef#123 2020-02-17 16:49:01 +00:00
Enable LDAP support on ejabberd

I prepared this email, any feedback? I put it on a Pad so it's easy to edit https://cryptpad.fr/code/#/2/code/edit/uBJev+Y8s1El0zX-ElnleEfQ/