mahara-contributors team mailing list archive

Thread
Date

[Bug 548165] Re: Increase length of username column to 255 to support shibboleth/SSO userIDs

To: mahara-contributors@xxxxxxxxxxxxxxxxxxx
From: Jeffrey Jones <jeffrey.jones@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 12 Apr 2011 01:44:37 -0000
Reply-to: Bug 548165 <548165@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

I'll be happy to test to see whether a migration of just the
remoteusername field will cover. However, since Moodle will only search
on one AD field with LDAP, and since our state is standardizing on email
(for cloud resourse reasons), the result will be a very unsatisfying
truncation of email addresses being stored in Mahara's username field as
new users SSO in. My vote is still to make it all uniform, standardizing
on username field size wherever it appears.

But I won't be writing the code or attending to all the other issues, so
it's easy for me to say... ;-)

Thanks, y'all (as they say in these parts), for picking up the ball on
this.

-- 
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
https://bugs.launchpad.net/bugs/548165

Title:
  Increase length of username column to 255 to support shibboleth/SSO
  userIDs

Status in Mahara ePortfolio:
  Confirmed

Bug description:
  get_new_username in lib/user.php truncates username to 30 characters
  by default. In some cases this is too short.

  As an example I have modified the SimpleSAMLPhP authenticator to use
  the Internet2 Shibboleth SAML service provider (SP). In cases where
  the eduPersonPrincipleName attribute (which look like
  username@xxxxxxxxxx) is not provider to the SP, the SP can either use
  the SAML1 eduPersonTargetedID attribute (which looks like
  e54710df7638d6c9@xxxxxxxxxx) or the serialized SAML2 NameID (which
  looks like "!IdP-entityID!SP-entityID!lq7q48crsqzyqehetxahzcgi/bc="
  and the entityIDs have the form of a URL) as usernames.

  30 characters is far to small to handle this and more over the
  varchar(100) username field in the various  tables like 'usr' will
  impact on this issue aswell.

  My guess is that you should be looking atleast 256 or 512 characters
  for this.

  PS. This is an issue for both SSP and Shibboleth.

  This bug was imported from eduforge.org, see:
  https://eduforge.org/tracker/index.php?func=detail&aid=3424&group_id=176&atid=739