Changes between Version 3 and Version 4 of DirectoryAuthPlugin


Ignore:
Timestamp:
Sep 18, 2012 1:14:39 PM (2 years ago)
Author:
sandinak
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • DirectoryAuthPlugin

    v3 v4  
    11[[PageOutline(2-5,Contents,pullout)]] 
    2 = Active Directory Auth Plugin = 
     2= Directory Auth Plugin = 
    33 
    44'''NOTE:''' Major changes from 0.3  
     5 - renamed to DirectoryAuthPlugin 
    56 - conf variables are renamed for standardization 
    67 - now more directory type agnostic 
     
    910== Description == 
    1011 
    11 The Active Directory Auth Plugin is a password store for the AccountManagerPlugin that provides authentication and groups from Active Directory.  
     12The Directory Auth Plugin is a password store for the AccountManagerPlugin that provides authentication and groups from Active Directory.  
    1213 
    13 Users are authenticated by performing an ldap_bind against the AD server using their credentials.  The plugin will also pull the email address and display name from Active Directory and populate the `session_attribute` table.  See [http://pacopablo.com/blog/pacopablo/blog/set-assign-to-drop-down Populating ''Assign To'' Drop Down in Trac] for more information on why.  
     14Users are authenticated by performing an ldap_bind against an LDAP or AD server using their credentials.  The plugin will also pull the email address and displayName from Directory and populate the `session_attribute` table.  See [http://pacopablo.com/blog/pacopablo/blog/set-assign-to-drop-down Populating ''Assign To'' Drop Down in Trac] for more information on why.  
    1415 
    1516== Groups ==  
    1617 - One can specify a group which users must be a member of in order to log in.   
    1718 - Additionally, one may specify an ''admin'' group.  If a user is a member of the ''admin'' group, then they will automatically be granted the `TRAC_ADMIN` permission. 
    18  - Finally, !ActiveDirectory groups are extended into the trac namespace.  They can be used to extend permissions by AD group. 
    19    - AD groups are prefixed by @  
     19 - Finally, Directory groups are extended into the trac namespace.  They can be used to extend permissions by group. 
     20   - directory groups are prefixed by @  
    2021   - group names are lowercase and spaces are replaced with underscores. 
    2122