Loading...

XML

Word

Printable

Type: Bug
Resolution: Not a bug
Priority: Major
Fix Version/s: None
Affects Version/s: 1.8.4
Component/s: Authentication
Labels:
None

Affected Branches:
MOODLE_18_STABLE

The site is set to force users to login. pop3 authentication is enabled in addition to internal. Self registration is set to disabled. If a user gives a bogus userid, he becomes a message about invalid login. Good. However, if a user gives a userid and passwort that are authenticated by pop3, he is allowed to continue to create an account. This should not happen if I understand the purpose of "registerauth" properly. I expect that when it is set to disabled, only users that are already defined in Moodle database can login using whatever authentication method assigned to them.

has been marked as being related by

MDL-12580 The page isn't redirecting properly if attempting to self register if self registration is disabled

Closed

MDL-12603 registerauth should be removed from "Common settings" in Authentication configuration

Closed

MDL-12604 add option to prevent creation of new accounts even if user authenticates in external source

Closed

Assignee:: Petr Skoda

Reporter:: Robert Brenstein

Tester:: Nobody (Inactive)

Participants:: Petr Skoda, Robert Brenstein

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Created:: 14/Dec/07 2:32 PM

Updated:: 17/Dec/10 9:34 PM

Resolved:: 16/Dec/07 10:14 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates

Clockify