mixup with username/email

[rienafairefr]

Seen at the tutorial at station F today:

• log in the webportal using email/password combination.
• start an experiment
• go to that experiment details
• the node actions buttons are not visible
• logout
• log in using username/password combination
• the node actions buttons are back

I think the problem comes from the auth.username field (stored in the browser in LocalStorage), which contains the email when the user logged in with the email/password combination. But in the experiment details view, the experiment.user field is not the email :-)

[rienafairefr]

Reproduced, and diagnostic confirmed. On devwww.iot-lab.info, when logging in with email, then some functionalities don't work (experiment details at least). With #85 deployed the problem goes away :+1:

[vandaele]

Thx for having found the origin and a fix so quickly. So, why a user authenticated with his email could see experimentations anyway ?

[rienafairefr]

the JS web-app sends (username/email, password) on each request, in testbed-manager the LDAP verifier can handle either (username, password) (email, password) to authorize a certain request response :-)