Changes between Version 20 and Version 21 of LdapPlugin


Ignore:
Timestamp:
Oct 21, 2006, 11:53:14 PM (18 years ago)
Author:
Emmanuel Blot
Comment:

Document the new feature introduced in 0.4.4

Legend:

Unmodified
Added
Removed
Modified
  • LdapPlugin

    v20 v21  
    2424[http://python-ldap.sourceforge.net/ python-ldap].[[BR]] LdapPlugin has been
    2525tested on a Debian Linux Sarge/Sid (2.4.x and 2.6.x) server, a Windows XP SP2 workstation, 
    26 as well as on MacBook Pro OS 10.4.7, all of them running Python 2.4 with Trac 'development' releases.
     26as well as on !MacBookPro OS 10.4.8, all of them running Python 2.4 with Trac 'development' releases.
    2727
    2828To use the egg file you need to have
     
    6060web site.
    6161
    62 Here is an example of a typical LDAP section of an Apache2 configuration file:
     62=== Apache 2.0 ===
     63
     64Here is an example of a typical LDAP section of an Apache2.0 configuration file:
    6365
    6466{{{
     
    151153# group permissions are managed as addition/removal to the LDAP directory groups
    152154manage_groups = true
     155# whether a group member contains the full dn or a simple uid
     156groupmemberisdn = true
    153157}}}
    154158
     
    333337your LDAP directory.
    334338
     339==== Group of names ====
     340
     341There are usually two flavours to manage group permissions in LDAP:
     342 1. The group contains a list of fully qualified dns
     343{{{
     344dn: cn=fakedoctors,ou=groups,dc=example,dc=org
     345cn: fakedoctors
     346objectClass: groupOfNames
     347objectClass: top
     348member: uid=meredith,ou=groups,dc=example,dc=org
     349member: uid=georges,ou=groups,dc=example,dc=org
     350member: uid=izzie,ou=groups,dc=example,dc=org
     351}}}
     352   With such an environment, your [ldap] section would contain
     353{{{
     354[ldap]
     355...
     356group_rdn = ou=groups
     357groupmemberisdn = true
     358groupname = groupofnames
     359groupmember = member
     360}}}
     361 1. The group contains a list of simple uids
     362{{{
     363dn: cn=fakedoctors,ou=groups,dc=example,dc=org
     364cn: fakedoctors
     365objectClass: posixGroup
     366objectClass: top
     367memberUid: uid=meredith
     368memberUid: uid=georges
     369memberUid: uid=izzie
     370}}}
     371   With such an environment, your [ldap] section would contain
     372{{{
     373[ldap]
     374...
     375group_rdn = ou=groups
     376groupmemberisdn = false
     377groupname = posixgroup
     378groupmember = memberUid
     379}}}
     380
    335381=== Global vs. Environment permissions ===
    336382
     
    440486 * '''v0.4.2''': Fix up an important issue with the management of the caches. The plugin has also been tested with the [trac:wiki:WebAdmin WebAdmin] plugin.
    441487 * '''v0.4.3''': Fix up two issues with authentication (an invalid user identifier was sent to the LDAP server)
     488 * '''v0.4.4''': Enable support for posix groups (and group members w/o distinguish name)
    442489
    443490== Author/Contributors ==
    444491
    445492'''Author:''' [wiki:eblot eblot] [[BR]]
    446 '''Contributors:''' wichert#wiggy.net
     493'''Contributors:''' wichert#wiggy.net, nguyen.antoine#wanadoo.fr
    447494
    448495[[TagIt(eblot,0.10,plugin)]]