is there a plan that I can add/remove users via the UI?
last, if I need add special account, e.g. non-interactive and such, I
will have to use gerrity-create-account to bypass the default
authentication(e.g. ldap), correct? special accounts normally do not
have ldap/http username setup.
thanks,
xianghua
No. You need to manually edit the database to delete the records.
> (say, when I switch from http to ldap authentication, ldap will refuse
> to login any username that duplicated whatever http login used).
>
> is there a plan that I can add/remove users via the UI?
Not really. I haven't wanted to do account management in Gerrit, its
annoying. Most of my installations use either OpenID, or have a
higher-level organization that provides an LDAP directory (Google,
Eclipse Foundation, etc.) with all of the user accounts.
> last, if I need add special account, e.g. non-interactive and such, I
> will have to use gerrity-create-account to bypass the default
> authentication(e.g. ldap), correct? special accounts normally do not
> have ldap/http username setup.
Correct. However these usernames are then blocked from logging in via
LDAP or HTTP, as their account already exists. So try to use a name
that isn't used inside of the upstream directory. :-)
Shawn, any comment on that? Please...? :)
Regards,
Markus
Am Freitag, 15. November 2013 08:02:49 UTC+1 schrieb Oleksandr Presich:
+1 to this questions, there is so many such errors, that sometimes it is hard to find useful information in the log.
Пʼятниця, 15 листопада 2013 р. 08:16:18 UTC+2 користувач Markus Duft написав:
May I pick up this oldish thread, as my question fits?How about removing users that had been removed from the LDAP directory? Is there any plan how to deal with this? Should those accounts stay alive forever? We have exceptions like this:
...
somewhat all over the logs. I just wanted to start deleting those users from the DB when i stoppen and thought about what happens to reviews for/from those persons then? Will they stay functional?
Doug is correct. Don't delete the account. If you do the attribution
information on reviews is broken and it starts saying "Anonymous
Coward" created a change or commented on a change when you look at
older reviews. This is probably not what you want in your version
control database.
Instead remove the account_external_ids and account_ssh_keys so there
is no way to authenticate into the account, and mark the account
"inactive = true" in the accounts table so it is not offered as a
completion suggestion.