Changes between Version 20 and Version 21 of LdapPlugin


Ignore:
Timestamp:
Oct 22, 2006 1:53:14 AM (8 years ago)
Author:
eblot
Comment:

Document the new feature introduced in 0.4.4

Legend:

Unmodified
Added
Removed
Modified
  • LdapPlugin

    v20 v21  
    2424[http://python-ldap.sourceforge.net/ python-ldap].[[BR]] LdapPlugin has been  
    2525tested on a Debian Linux Sarge/Sid (2.4.x and 2.6.x) server, a Windows XP SP2 workstation,   
    26 as well as on MacBook Pro OS 10.4.7, all of them running Python 2.4 with Trac 'development' releases. 
     26as well as on !MacBookPro OS 10.4.8, all of them running Python 2.4 with Trac 'development' releases. 
    2727 
    2828To use the egg file you need to have  
     
    6060web site. 
    6161 
    62 Here is an example of a typical LDAP section of an Apache2 configuration file: 
     62=== Apache 2.0 === 
     63 
     64Here is an example of a typical LDAP section of an Apache2.0 configuration file: 
    6365 
    6466{{{ 
     
    151153# group permissions are managed as addition/removal to the LDAP directory groups 
    152154manage_groups = true 
     155# whether a group member contains the full dn or a simple uid 
     156groupmemberisdn = true 
    153157}}} 
    154158 
     
    333337your LDAP directory. 
    334338 
     339==== Group of names ==== 
     340 
     341There are usually two flavours to manage group permissions in LDAP: 
     342 1. The group contains a list of fully qualified dns 
     343{{{ 
     344dn: cn=fakedoctors,ou=groups,dc=example,dc=org 
     345cn: fakedoctors 
     346objectClass: groupOfNames 
     347objectClass: top 
     348member: uid=meredith,ou=groups,dc=example,dc=org 
     349member: uid=georges,ou=groups,dc=example,dc=org 
     350member: uid=izzie,ou=groups,dc=example,dc=org 
     351}}} 
     352   With such an environment, your [ldap] section would contain 
     353{{{ 
     354[ldap] 
     355... 
     356group_rdn = ou=groups 
     357groupmemberisdn = true 
     358groupname = groupofnames 
     359groupmember = member 
     360}}} 
     361 1. The group contains a list of simple uids 
     362{{{ 
     363dn: cn=fakedoctors,ou=groups,dc=example,dc=org 
     364cn: fakedoctors 
     365objectClass: posixGroup 
     366objectClass: top 
     367memberUid: uid=meredith 
     368memberUid: uid=georges 
     369memberUid: uid=izzie 
     370}}} 
     371   With such an environment, your [ldap] section would contain 
     372{{{ 
     373[ldap] 
     374... 
     375group_rdn = ou=groups 
     376groupmemberisdn = false 
     377groupname = posixgroup 
     378groupmember = memberUid 
     379}}} 
     380 
    335381=== Global vs. Environment permissions === 
    336382 
     
    440486 * '''v0.4.2''': Fix up an important issue with the management of the caches. The plugin has also been tested with the [trac:wiki:WebAdmin WebAdmin] plugin. 
    441487 * '''v0.4.3''': Fix up two issues with authentication (an invalid user identifier was sent to the LDAP server) 
     488 * '''v0.4.4''': Enable support for posix groups (and group members w/o distinguish name) 
    442489 
    443490== Author/Contributors == 
    444491 
    445492'''Author:''' [wiki:eblot eblot] [[BR]] 
    446 '''Contributors:''' wichert#wiggy.net 
     493'''Contributors:''' wichert#wiggy.net, nguyen.antoine#wanadoo.fr 
    447494 
    448495[[TagIt(eblot,0.10,plugin)]]