Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
Description
When using LDAP, users can be added to user groups even if they have not logged in to the site before because the userid can be validated using LDAP. This is not possible when Shibboleth is used without LDAP. It would be useful to go ahead and add the users to the database and set a flag that the user is not validated. Then, after some amount of time, if the user never logs in, the account can be expunged.