Project

General

Profile

Feature #6099

Remove temporary LDAP accounts after X amount of time has passed

Added by ben leinfelder almost 6 years ago. Updated almost 6 years ago.

Status:
Closed
Priority:
Normal
Category:
-
Target version:
Start date:
Due date:
% Done:

0%

Estimated time:
Bugzilla-Id:

Description

Users are added to a temporary LDAP tree until they activate their account via email. We should remove these accounts after a certain amount of time so that they can either retry their registration if something went wrong or clear out spam that we might receive.


Related issues

Related to Metacat - Task #6066: Add email verification for new accountsClosed09/05/2013

History

#1 Updated by ben leinfelder almost 6 years ago

  • Assignee set to Jing Tao
  • Description updated (diff)

#2 Updated by ben leinfelder almost 6 years ago

  • Target version changed from 2.2.1 to 2.3.0

#3 Updated by ben leinfelder almost 6 years ago

  • Assignee changed from Jing Tao to ben leinfelder
  • Status changed from New to In Progress

Trying a dry-run of this on dev2. Using 36 hour expiration for now - configurable in metacat.properties on a per-organization basis.

#4 Updated by ben leinfelder almost 6 years ago

  • Status changed from In Progress to Closed

Now removing expired user accounts in the dc=tmp subtree. This is done whenever someone tries to register an account so there is no cron job needed to trigger the check. This also means that if someone hasn't activated their account in the expiration window, they can retry with the exact same username and it will succeed (since the first tmp account will be removed before we check for duplicate tmp accounts during registration). The only downside is that if no one ever tries to register, we will not clear out whatever accounts have expired, but if that's the case, who cares?

Also available in: Atom PDF