Changes between Version 20 and Version 21 of LdapPlugin
- Timestamp:
- Oct 21, 2006, 11:53:14 PM (18 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
LdapPlugin
v20 v21 24 24 [http://python-ldap.sourceforge.net/ python-ldap].[[BR]] LdapPlugin has been 25 25 tested on a Debian Linux Sarge/Sid (2.4.x and 2.6.x) server, a Windows XP SP2 workstation, 26 as well as on MacBook Pro OS 10.4.7, all of them running Python 2.4 with Trac 'development' releases.26 as well as on !MacBookPro OS 10.4.8, all of them running Python 2.4 with Trac 'development' releases. 27 27 28 28 To use the egg file you need to have … … 60 60 web site. 61 61 62 Here is an example of a typical LDAP section of an Apache2 configuration file: 62 === Apache 2.0 === 63 64 Here is an example of a typical LDAP section of an Apache2.0 configuration file: 63 65 64 66 {{{ … … 151 153 # group permissions are managed as addition/removal to the LDAP directory groups 152 154 manage_groups = true 155 # whether a group member contains the full dn or a simple uid 156 groupmemberisdn = true 153 157 }}} 154 158 … … 333 337 your LDAP directory. 334 338 339 ==== Group of names ==== 340 341 There are usually two flavours to manage group permissions in LDAP: 342 1. The group contains a list of fully qualified dns 343 {{{ 344 dn: cn=fakedoctors,ou=groups,dc=example,dc=org 345 cn: fakedoctors 346 objectClass: groupOfNames 347 objectClass: top 348 member: uid=meredith,ou=groups,dc=example,dc=org 349 member: uid=georges,ou=groups,dc=example,dc=org 350 member: uid=izzie,ou=groups,dc=example,dc=org 351 }}} 352 With such an environment, your [ldap] section would contain 353 {{{ 354 [ldap] 355 ... 356 group_rdn = ou=groups 357 groupmemberisdn = true 358 groupname = groupofnames 359 groupmember = member 360 }}} 361 1. The group contains a list of simple uids 362 {{{ 363 dn: cn=fakedoctors,ou=groups,dc=example,dc=org 364 cn: fakedoctors 365 objectClass: posixGroup 366 objectClass: top 367 memberUid: uid=meredith 368 memberUid: uid=georges 369 memberUid: uid=izzie 370 }}} 371 With such an environment, your [ldap] section would contain 372 {{{ 373 [ldap] 374 ... 375 group_rdn = ou=groups 376 groupmemberisdn = false 377 groupname = posixgroup 378 groupmember = memberUid 379 }}} 380 335 381 === Global vs. Environment permissions === 336 382 … … 440 486 * '''v0.4.2''': Fix up an important issue with the management of the caches. The plugin has also been tested with the [trac:wiki:WebAdmin WebAdmin] plugin. 441 487 * '''v0.4.3''': Fix up two issues with authentication (an invalid user identifier was sent to the LDAP server) 488 * '''v0.4.4''': Enable support for posix groups (and group members w/o distinguish name) 442 489 443 490 == Author/Contributors == 444 491 445 492 '''Author:''' [wiki:eblot eblot] [[BR]] 446 '''Contributors:''' wichert#wiggy.net 493 '''Contributors:''' wichert#wiggy.net, nguyen.antoine#wanadoo.fr 447 494 448 495 [[TagIt(eblot,0.10,plugin)]]