Changes between Version 3 and Version 4 of DirectoryAuthPlugin


Ignore:
Timestamp:
Sep 18, 2012, 1:14:39 PM (2 years ago)
Author:
sandinak
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • DirectoryAuthPlugin

    v3 v4  
    11[[PageOutline(2-5,Contents,pullout)]]
    2 = Active Directory Auth Plugin =
     2= Directory Auth Plugin =
    33
    44'''NOTE:''' Major changes from 0.3
     5 - renamed to DirectoryAuthPlugin
    56 - conf variables are renamed for standardization
    67 - now more directory type agnostic
     
    910== Description ==
    1011
    11 The Active Directory Auth Plugin is a password store for the AccountManagerPlugin that provides authentication and groups from Active Directory.
     12The Directory Auth Plugin is a password store for the AccountManagerPlugin that provides authentication and groups from Active Directory.
    1213
    13 Users are authenticated by performing an ldap_bind against the AD server using their credentials.  The plugin will also pull the email address and display name from Active Directory and populate the `session_attribute` table.  See [http://pacopablo.com/blog/pacopablo/blog/set-assign-to-drop-down Populating ''Assign To'' Drop Down in Trac] for more information on why.
     14Users are authenticated by performing an ldap_bind against an LDAP or AD server using their credentials.  The plugin will also pull the email address and displayName from Directory and populate the `session_attribute` table.  See [http://pacopablo.com/blog/pacopablo/blog/set-assign-to-drop-down Populating ''Assign To'' Drop Down in Trac] for more information on why.
    1415
    1516== Groups ==
    1617 - One can specify a group which users must be a member of in order to log in. 
    1718 - Additionally, one may specify an ''admin'' group.  If a user is a member of the ''admin'' group, then they will automatically be granted the `TRAC_ADMIN` permission.
    18  - Finally, !ActiveDirectory groups are extended into the trac namespace.  They can be used to extend permissions by AD group.
    19    - AD groups are prefixed by @
     19 - Finally, Directory groups are extended into the trac namespace.  They can be used to extend permissions by group.
     20   - directory groups are prefixed by @
    2021   - group names are lowercase and spaces are replaced with underscores.
    2122