Closed NotSpecial closed 7 years ago
We are already able to get the NETHZ from the name itself with the people search of ETH
So actually in my opinion it would be reasonable if we allow to search people by id, nethz or name and display these 3 for all users that are logged in via LDAP.
A problem are external members who are admin of a group, as that would mean we go further than the LDAP access rights.
Your first point makes sense. We should do that.
A problem are external members who are admin of a group, as that would mean we go further than the LDAP access rights.
Can you clarify this? Basically all member search functions for admins/groupadmins go further than LDAP access rights, regardless if they are external or not, so I'm not sure what you want to say here.
Consider your problem from above. Now consider Pablo not beeing ETH member because he is an external AMIV member. Therefore, by ETH policy, he is not allowed to search for student's names or nethz or anything. So if we implement our own search we
a) don't differentiate between ETH and external members and open up name-search further then LDAP access rights by ETH. But Pablo will easily be able to add Pablito b) we differentiate between ETH and external members. Therefore, Pablo is not able to search for _Pablito_s id.
Ah, I see your point now but I don't think thats a problem.
All we need is the nethz and id. So in order to cover the missing functionality we do not need full name search.
I think for basic funtionality it's enough to be able to search for nethz and get the id back. (no extra data)
Adding full name search might be a bonus feature we could discuss separately.
Seems to have been resolved. Peace out ✌(◕‿-)✌
Situation:
About their knowledge:
Now we have the following problem:
How can this be solved? I can think of three ways on top of my head but I'm unsure about each of them
The first two solutions are kind of unnecessary complicated. What do you think about the third? Or are there other solutions?