Project

General

Profile

Actions

Bug #33759

closed

AJAX login doesn't work with RSAauth and Salted pass

Added by Jacob Floyd almost 13 years ago. Updated about 11 years ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
Authentication
Target version:
-
Start date:
2012-02-08
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
4.6
PHP Version:
5.3
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

Background

I recently logged in to an old typo3 installation, and found the AJAX login very refreshing. I would love to see AJAX login instead of the refresh login popup.

Bug Description and Analysis

AJAX login doesn't work when using extensions rsaauth and saltedpasswords.

In these extensions (and in openid, based on a quick grep) ext_localconf.php includes:

// Use popup window to refresh login instead of the AJAX relogin:
$TYPO3_CONF_VARS['BE']['showRefreshLoginPopup'] = 1;

Overriding that in typo3conf/localconf.php does not work as ext_localconf.php is loaded after my localconf.php (after all, it has to look in localconf.php to figure out which extensions to load).

Why?

Looking back to #20382 where the patch for RSAauth was first introduced, Dmitry said:

ajax login box does not work with RSA. I will re–factor it later, before the release of 4.3. It will use the same hooks thus making any authentication method possible

What to do?

I'm guessing that refactoring will touch typo3/js/loginrefresh.js, but JavaScript is not my forte...

It looks like typo3/classes/class.ajaxlogin.php also needs some rsa love.

Dmitry committed the AJAX login in 93e6a5d3 so those files might need a massage.

Any chance of that refactoring getting in by 4.7?

Why I picked watchers:

Dmitry Dulepov - originally wrote rsaauth and saltedpasswords as well as class.ajaxlogin.php
Steffen Ritter - Release Manager for 4.7 (please?)

Annotations here on forge say that the following people have touched loginrefresh.js and/or class.ajaxlogin.php

Steffan Kamper - wrote much of loginrefresh.js
Oliver Hader
Jigal
Ernesto Baschny


Related issues 4 (0 open4 closed)

Related to TYPO3 Core - Feature #20382: Implement RSA authentication for BE and FEClosedDmitry Dulepov2009-04-30

Actions
Related to TYPO3 Core - Feature #19152: Remove JS popup when login expiredClosedOliver Hader2008-07-25

Actions
Related to TYPO3 Core - Bug #20038: AJAX relogin does not workClosedSteffen Kamper2009-02-17

Actions
Related to TYPO3 Core - Bug #19897: Bad interaction between OpenId auth and ExtJS relogin boxClosedOliver Hader2009-01-23

Actions
Actions

Also available in: Atom PDF