Login as user

Favorite-off Notification-off
28 Thumb-up Thumb-down
Idea by culkinj3 about 1 year ago Favorite-off - Open
I would like the abilty as an administrator to login as a user so that I can check their access

8 comments

  • 1 point Thumb-up Thumb-down Favorite-off by bradley.wagner about 1 year ago Permalink
    As a workaround, administrator can modify the passwords of users assuming they are using Normal authentication.
    • 2 points Thumb-up Thumb-down Favorite-off by culkinj3 about 1 year ago Permalink
      We are using custom authentication. Also this would affect anyone using LDAP authentication. Its not a good idea to modify the password of a user because then you will have to change it back to something that they know - its a best security practice for administrators to not know the passwords of the users
  • 1 point Thumb-up Thumb-down Favorite-off by irifkin about 1 year ago Permalink
    Currently I use a "normal" user and setup access to mimic the user in question. This functionality would save us time in support/troubleshooting.
    • 2 points Thumb-up Thumb-down Favorite-off by bradley.wagner about 1 year ago Permalink
      Good tip! I actually just employed this a second ago. But I agree, having an easy way to actually login as the user would be helpful.
    • 0 points Thumb-up Thumb-down Favorite-off by bundric 6 months ago Permalink
      same here
  • 2 points Thumb-up Thumb-down Favorite-off by len.lanphar about 1 year ago Permalink
    Sort of related to this, it would be useful to be able to do user impersonation in SOAP calls. Since we have a single sign-on environment, we can't expose SOAP-based tools to end users unless we do everything using a special SOAP user account and then have our scripts do all the necessary user permissions checking for the particular person making the request. If that SOAP user had the ability to specify a user to impersonate in the request, we could at least let the CMS handle all the permissions-checking stuff.
  • 3 points Thumb-up Thumb-down Favorite-off by srutland about 1 year ago Permalink
    A selling point of Cascade to management is the ability to "remotely troubleshoot" user problems (it's a more efficient use of resources).  The ability to login as a user to see what problem they are experiencing would definitly be helpful.   I like irifkin's work around for this...in the mean time ;-)
  • 0 points Thumb-up Thumb-down Favorite-off by clindahl 3 months ago Permalink
    We're not using LDAP, so we wrote a simple "steal a userid" script via direct mySQL calls. We go into the user table and set the (encrypted) password to "foo" while saving their old password in another table.

    We then login using "foo" to see what they see, troubleshoot, and then re-invoke the procedure to set their password back.

    We obviously limit the access to this procedure to a list of authorized users.

    It should be possible to do something similar with LDAP/Active Directory calls.


No attachments


* Note - To input code samples, click the pencil icon (this will remove the WYSIWYG) then be sure to start and end code sections with @@@ (three '@' signs).  For more information on textile markup, click here.  

Sign in

Follow us on Twitter

Current Category