LDAP Two Steps Login
Categories
Component ID
2929391
Component name
LDAP Two Steps Login
Component type
module
Maintenance status
Development status
Component security advisory coverage
not-covered
Downloads
17
Component created
Component changed
Component body
This modules allows a two-steps login by first asking for a username or a mail address then a password if a match is found in Drupal DB or any configured LDAP.
What this module does:
- Add a hook to the login form in order to insert a class-based display
- Grab the user input and call a the "/check_user_mail" url through ajax
- Look for a matching username or mail address inside Drupal DB
- If no results are found, look all configured LDAP servers
- Check through the whitelist and blacklist to ensure that only one user matches
To be implemented:
- Some configuration: username only / mail address only / both (default)
- Security:
- link each attempt to the flood table, to avoid brute force logins
- allow to configure a max attempts number
Dependencies
- ldap_servers
- ldap_profile
- ldap_authentication