flexibility and Performance of LDAP Traversal
|Reported by:||Thomas Stümpfig||Owned by:||branson|
The plugin "only" traverses one AD group hierarchy. What if you have two or more groups in the AD that you want to allow as authenticated users. Today you would have to create a group "Trac" users add the groups to this groups. -> This way you would need to have write Access to the AD. This is not allways easy. -> The performance also is impacted.
It would be more flexible and probably give better performance if the AD query is expressed in the trac.ini directly.