Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
lemonldap-ng
lemonldap-ng
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 277
    • Issues 277
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 7
    • Merge Requests 7
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
  • Operations
    • Operations
    • Incidents
    • Environments
  • Packages & Registries
    • Packages & Registries
    • Container Registry
  • Analytics
    • Analytics
    • CI/CD
    • Repository
    • Value Stream
  • Snippets
    • Snippets
  • Members
    • Members
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • LemonLDAP NG
  • lemonldap-nglemonldap-ng
  • Issues
  • #1605

Closed
Open
Created Jan 07, 2019 by dcoutadeur dcoutadeur@dcoutadeurDeveloper

certificate reset by mail

Summary

I would like to propose a new feature named "certificate reset by mail". It has exactly the same steps as password reset by mail, but for certificate.

The feature is proposed for 1.9. if I have time, I'd like to make the feature available for 2.0 too

Design proposition

  • User click the reset certificate button.
  • He enters his mail.
  • If mail is found in directory, a mail is sent with a link.
  • The password click the link and comes back to portal
  • The portal asks him to enter his certificate (base64 pem only)
  • the certificate and a computed field are stored in two attributes defined by administrator
  • a confirmation mail is sent.

Limitations

  • no .p12 certificate accepted
  • configuration key stored in lemonldap-ng.ini
  • user can't use the reset password and reset certificate kinematics at the same time, because the session records a mail has been sent.

I'll be glad to hear about your comments if any.

Edited Jan 07, 2019 by dcoutadeur dcoutadeur
Assignee
Assign to
2.0.7
Milestone
2.0.7 (Past due)
Assign milestone
Time tracking
None
Due date
None