Changes between Version 3 and Version 4 of LdapPlugin

Timestamp:

Nov 5, 2005, 1:28:34 AM (18 years ago)

Author:

Emmanuel Blot

Comment:

Typo/grammar

LdapPlugin

@@ -4 +4 @@
 
 LDAP support with group management has been added as a Trac extension. This
-extension allows to use existing LDAP groups to grant permissions, rather than 
+extension enables to use existing LDAP groups to grant permissions rather than 
 defining permissions for every single user on the system. The latest release also
 permits to store permissions (both users and groups permissions) in the LDAP 
-directory itself, rather than in the SQL backend.
+directory itself rather than in the SQL backend.
 
 The original proposition about LDAP ACL is documented under ticket 
 [http://projects.edgewall.com/trac/ticket/535 Trac#535] on the official web site.
 
-This software is [http://trac.edgewall.com/license.html licensed] with the same 
+This software is [http://trac.edgewall.com/license.html licenced] with the same 
 license than Trac.
 
@@ -20 +20 @@
 [http://python-ldap.sourceforge.net/ python-ldap].[[BR]] LdapPlugin has been 
 tested on a Debian Linux Sarge/Sid (2.4.x and 2.6.x) server, as well as on a 
-Windows XP SP2 workstation, both running Python 2.3, with Trac-0.9b2.
-
-To use the egg file, you need to have 
+Windows XP SP2 workstation, both running Python 2.3 with Trac-0.9b2.
+
+To use the egg file you need to have 
 [http://peak.telecommunity.com/DevCenter/setuptools setuptools], version 0.6+ 
 installed.[[BR]]Please refer to the 
@@ -40 +40 @@
  
  * Source code is available from http://trac-hacks.swapoff.org/svn/ldapplugin [[BR]] It has been written against Trac [http://projects.edgewall.com/trac/changeset/2353 trunk:2353].
- * You can also find [wiki:LdapPlugin#Testing unit tests] at the same location, under the `tests` directory, which may help you to deploy the plugin.
+ * You can also find [wiki:LdapPlugin#Testing unit tests] at the same location - under the `tests` directory -, which may help you deploy the plugin.
 
 == Installation ==
 
- * Build the ''egg'' file, following plugin packaging [http://projects.edgewall.com/trac/wiki/TracDev/PluginDevelopment#Packaginganddeployingplugins instructions]
+ * Build the ''egg'' file following the plugin packaging [http://projects.edgewall.com/trac/wiki/TracDev/PluginDevelopment#Packaginganddeployingplugins instructions]
  * Copy the `dist/LdapPlugin-0.y.z-py2.3.egg` file in your ''plugins'' project directory.
 
@@ -51 +51 @@
 LdapPlugin does '''not''' perform authentication: Apache2 does, through the HTTP 
 protocol, as with any other Trac installation.[[BR]]
-LdapPlugin retrieves the groups to which the authenticated user belongs, and 
+LdapPlugin retrieves the groups to which the authenticated user belongs and 
 checks the [http://projects.edgewall.com/trac/wiki/TracPermissions TracPermissions]
 against these groups, along with the regular permissions for the user.
 
 You probably want to use Apache2 LDAP authentication as well.[[BR]]
-This topic is out of scope of this document, but you may find useful information
+This topic is out of scope of this document but you may find useful information
 on the official Apache2 [http://httpd.apache.org/docs-2.0/mod/mod_ldap.html mod_ldap] 
 web site.
@@ -82 +82 @@
     this extension. 
  1. Optionnally add the path to your plugin directory
- 1. Configure the LDAP directives to fit to your LDAP server configuration
+ 1. Configure the LDAP directives to fit your LDAP server configuration
 
 The section may also contain the following options (which are presented down 
@@ -127 +127 @@
 }}}
 
-You'd probably want to define at least `enable=true` and the `basedn`[[BR]]
+You probably want to define at least `enable=true` and the `basedn`[[BR]]
 The meaning of the options are pretty straightforward for LDAP administrators.
 
-A typical setup for group resolution would look like
+A typical setup for group resolution would look like this:
 
 {{{
@@ -138 +138 @@
 }}}
 
-A typical setup for all LDAP support (group resolution and permission store 
-would look like
+A typical setup for all LDAP support (group resolution and permission store) 
+would look like this:
 
 {{{
@@ -153 +153 @@
 == Authenticated LDAP connections ==
 
-If your server requires an authenticated connection to retrieve group permissions, 
-you want to set `group_bind = true` in the `[ldap]` section, and define 
-the credentials, as follow:
+If the server requires an authenticated connection to retrieve group permissions, 
+you want to set `group_bind = true` in the `[ldap]` section and define 
+the credentials as follows:
 
 {{{
@@ -164 +164 @@
 }}} 
 
-If your server requires an authenticated connection to modify group permissions, 
-you want to set `store_bind = true` in the `[ldap]` section, and define 
-the credentials, as follow:
+If the server requires an authenticated connection to modify group permissions, 
+you want to set `store_bind = true` in the `[ldap]` section and define 
+the credentials as follows:
 
 {{{
@@ -192 +192 @@
 }}}
 
-The extensions differenciates '''group permissions''' from '''user permission'''.
-This allow to use distinct objectclasses in the LDAP directory, to store 
-permission. For example, thanks to the `groupattr` and `uidattr` 
+The extension differenciates '''group permissions''' from '''user permission'''.
+This permits to use distinct objectclasses in the LDAP directory, to store 
+permission. For example thanks to the `groupattr` and `uidattr` 
 attributes, you can define group permission to LDAP entries such as
 {{{
@@ -234 +234 @@
 Please note that the LDAP permission store '''never''' attemps to create a new
 entry in the LDAP directory. To grant (or revoke) permissions to/from the LDAP
-directory, the targetted LDAP entry should exist in the directory, and the
+directory, the targetted LDAP entry should exist in the directory and the
 attribute defined by the `permattr` option should be writtable for the 
 `store_user` user.
@@ -273 +273 @@
 LDAP group have the `WIKI_CREATE` and `WIKI_MODIFY` permission.
 
-You can obviously still use permissions for regular user, such as ''eblot'' in 
-the aforementionned example.
-
-'''Note''': Please remember that ''anonymous'' and ''authenticated'' are special users, 
+You can obviously still use permissions for regular user such as ''eblot'' in 
+the example above.
+
+'''Note''': Please remember that ''anonymous'' and ''authenticated'' are special users 
 but are considered by the permission backend just like any other regular user.[[BR]]
 This means that you need to add both these special users in your LDAP directory
@@ -287 +287 @@
 
  * Only LDAP v3 protocol is supported. This extension may work with v2 protocol 
-   as well, if the v3 specifier is removed from the code
+   as well, if the v3 specifier is removed from the code.
 
 == !ToDo list ==
  
- * Add user detail support, so that the full name and email address are 
+ * Add user detail support so that the full name and email address are 
    retrieved from the LDAP server. It would require a new extension point in 
    Trac engine.
@@ -298 +298 @@
 == Testing ==
 
-The LdapPluginTests page gives some hint about how to test the Ldap extension for 
+The LdapPluginTests page gives some hints about how to test the Ldap extension for 
 Trac
 
 == History ==
 
- * '''v0.0''': First attempt to write a LDAP bridge for Trac, based on Trac 0.8, which required some hacks into the Trac engine. Too bad
+ * '''v0.0''': First attempt to write a LDAP bridge for Trac based on Trac 0.8, which required some hacks into the Trac engine.
  * '''v0.1''': A new implementation has started on September, 1st '05, to profit from the new [http://projects.edgewall.com/trac/wiki/TracPlugins TracPlugins] module  architecture introduced in Trac 0.9-pre.[[BR]] This implementation should bring the following improvements:
    * includes a cache to dramatically reduce LDAP requests
-   * better handling of LDAP errors[[BR]]This extension works with Trac 0.9-pre1, and requires the [http://peak.telecommunity.com/DevCenter/setuptools setuptools], version 0.5a13
- * '''v0.2''': This new release fixes up a couple of bugs, and works with Trac 0.9-pre2. It requires the [http://peak.telecommunity.com/DevCenter/setuptools setuptools], version 0.6+.[[BR]]It introduces support for LDAP permission store: TracPermissions can now stored into the LDAP directory, rather than in the SQL backend.[[BR]]Each feature (LDAP as a provider of group permissions, LDAP as a permission store) are independent and can be enabled or disabled on demand.
+   * better handling of LDAP errors[[BR]]This extension works with Trac 0.9-pre1 and requires the [http://peak.telecommunity.com/DevCenter/setuptools setuptools], version 0.5a13
+ * '''v0.2''': This new release fixes up a couple of bugs and works with Trac 0.9-pre2. It requires the [http://peak.telecommunity.com/DevCenter/setuptools setuptools], version 0.6+.[[BR]]It introduces support for LDAP permission store: TracPermissions can now be stored into the LDAP directory, rather than in the SQL backend.[[BR]]Each feature (LDAP as a provider of group permissions, LDAP as a permission store) are independent and can be enabled or disabled on demand.
 
 == Author/Contributors ==