Contents
Password store for when running LDAP services
Notice: This plugin is unmaintained and available for adoption.
Description
This plugin is a password store for the AccountManagerPlugin that provides authentication and group membership from an LDAP service. It does not support listing users, changing passwords, or anything other than authenticating.
Ticket #1147 offers a better solution when linking LdapPlugin to AccountManager. It provides user listing, password changing, MD5/CRYPT/SASL binding/authentication.
Bugs/Feature Requests
Existing bugs and feature requests for TracLdapAuthPlugin are here.
If you have any issues, create a new ticket.
Download
Download the zipped source of the stable branch from here.
The package is also available on PyPi.
Source
You can check out TracLdapAuthPlugin from here using Subversion, or browse the source with Trac.
Installation
- Install python-ldap.
- Install the AccountManager plugin.
- Install the TracLdapAuthPlugin plugin.
Configuration
This is a sample trac.ini configuration for this plugin:
[ldap] host_url = ldap://ldap.example.com base_dn = OU=Users,DC=example,DC=com bind_user = ldap@example.com bind_password = your_secret_password_here search_scope = subtree search_filter = (&(objectClass=user)(sAMAccountName=%s)) [account-manager] password_store = LDAPStore [components] ldapauth.* = enabled
Explanations of options:
host_url
Server URL to use for LDAP authentication:
ldap://ldap.example.com ldaps://ldap.example.com
base_dn
The user base DN when searching for users.
bind_user
LDAP user for searching.
bind_password
LDAP user password.
search_scope
The LDAP search scope: base, onelevel or subtree.
search_filter
The ldap search filter template where %s is replaced with the username.
Recent Changes
Author/Contributors
Author: coderanger
Maintainer: none (needsadoption)
Contributors: k0s
