On 5/18/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
Quoting Tegan Dowling <[EMAIL PROTECTED]>: > On 5/17/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: >> >> Quoting Hladůvka Jiří <[EMAIL PROTECTED]>: >> >>> The Editor napsal(a): >>>>> That's the behaviour I would like to have! >>>>> I have a similar configuration as you have, but as mentionde before, I >>>>> will remain on the login page, despite successful login. >>>>> >>>>> Somebody mentioned the parameter 'nextpage' - where and how can I >>>>> resolve this issue? >>>> >>>> >>>> Nextpage is only a factor if you are using ZAP for your member >>>> authentication. If you are using the standard AuthUser authorization >>>> form that parameter does nothing. At this point it seems pretty clear >>>> you are not using ZAP. >>>> >>> >>> IMO the proble has nothing to do with ZAP as the link is not placed >>> in any form (- I suppose; Mike is using ZAP as the problem occures >>> in his JITS page). Perhaps Tegan is right saying : >>> "if user A logs in with his name and instead *his* password enters the >>> password set for e.g. "Read" which is not bound to any user, then the >>> the user stays in the login page" >>> >>> Mike, try to create some user with an *original* password in your >>> Site.Authuser and try to login. Put the link e.g. into Main.Wikisandbox >>> [[Main.Wikisandbox?action=login|Login]] >> >> I am using AuthUser and the authentication goes through a LDAP server. >> >> I made some tests. >> 1) If I make the authentication throught 'edit' then I end up in the >> edit page after the authentication >> >> 2) If I make the authentication through ?action=login, I end up in the >> login page despite successful authentication. It is independent of ZAP >> etc. > > > But you haven't said: When you log in, are you using the password assigned > to an individual, or are you using one that's assigned in the > config.phpfile or via the ?action=attr? In config.php I say that the authentication goes through a LDAP call, I do not use ?action=attr. Is that the information you meant?
And so, every time someone logs in, they have to provide their own, personal, user-specific password (as maintained and controlled by the LDAP stuff), *not* a system-wide user password. Right? If so, then even though this setup has the problem of failing to return the user to the page after ?action=login, the problem is happening under different (evident) conditions than those under which I experience it. Is that not a useful clue for someone?
_______________________________________________ pmwiki-users mailing list [email protected] http://www.pmichaud.com/mailman/listinfo/pmwiki-users
