View: New views
1 Messages — Rating Filter: Alert me
Hi, Juergen -
Now it's my turn to apologize for taking so long to reply. I haven't had any time to work on the LDAP plugin and I'm not an LDAP expert but I'll do my best to answer your questions below.
On Sat, Apr 7, 2012 at 9:59 AM, <juergen@...> wrote:
So basically when I did this I didn't have a lot of LDAP test beds to work against. I work at Google so I used the Google internal corporate LDAP setup, did my best to get it working there and basically stopped when it worked. The way that PHP does LDAP support is that you call ldap_connect() then ldap_bind().
ldap_connect is pretty straightforard, it's using the url param from the config file. Once you have the connection, ldap_bind expects a root DN and password, which are the bind_rdn and bind_password fields in the config file.
After that, everything basically just worked for me. There are a few extra params in the config file:
groups: this is the set of LDAP groups that we intend to map over into Gallery 3 groups - I do this because Google internally has a ton of groups and I don't want to try to map them all
everybody_group: this is the LDAP group that maps to a non-authenticated user - eg a guest.
registered_users_group: this is the LDAP group that contains every single user (but not guests)
admins: this is an array of LDAP users who have admin access in Gallery 3
group_domain and user_domain: these are the search paths that ldap_search uses to do lookups. For users, when looking up by name we look for "uid=<name>". When looking up by id we look for "uidNumber=<id>". For groups we use gidNumber and cn.
That's essentially all I know. The code is all here: https://github.com/gallery/gallery3-contrib/blob/master/3.0/modules/ldap/libraries/drivers/IdentityProvider/Ldap.php
I can answer any specific questions...
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
__[ g a l l e r y - d e v e l ]_________________________
[ list info/archive --> http://gallery.sf.net/lists.php ]
[ gallery info/FAQ/download --> http://gallery.sf.net ]
|Free embeddable forum powered by Nabble||Forum Help|