Name cleanup fix for NTLM and Negotiate [#68196]

When the auth type is NTLM or Negotiate, webserver_auth module removes any domain name specification from the username. However, when using kerberos authentication, the username takes the form user@DOMAIN

- the relevent piece of code effectively removes the first character of the username (bug)
- whatever is after and including the @ sign is better removed (nice to have)
- trim is called twice for $account->name, and better do it only once (nice to have)

The attached patch:

- tests for the substring "\" before removing the NT domain
- tests for an @ sign and removes the domain if exists
- does the trimming only once

Please apply.

Comment	File	Size	Author
	webserver-auth-4.7.0-ntlm-negotiate.patch.txt	844 bytes	anuradha-1

Comments

Comment #1

anuradha-1 commented 9 June 2006 at 16:12

This report seems to be about the same bug.

Comment #2

moshe weitzman commented 24 April 2007 at 01:10

Status:

Needs review

» Fixed

applied. sorry it took so long. i did not test, since i no longer have access to windows.

Comment #3

(not verified) commented 8 May 2007 at 01:17

Status:

Fixed

» Closed (fixed)

Name cleanup fix for NTLM and Negotiate

Comments

Comment #1

Comment #2

Comment #3

News items

Our community

Documentation

Drupal code base

Governance of community