[dev] Re: [horde] Re: lib/Horde/Prefs/ldap.php, anonymous binding

Ben Sommer Ben.Sommer at enc.edu
Fri Apr 15 15:07:38 PDT 2005 

This is a multi-part message in MIME format.
--------------010108030808070605080003
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

Ryan Evans wrote:

> I would love it if you could do this, as I believe this is my problem 
> why I cannot get my ldap to work with this version :)

Here's my patches to 'lib/Horde/Prefs/ldap.php' (1.85.10.4) and 
'config/conf.xml' (1.74.2.5). A simple flag to 'fetchDN' in the 
preferences config will make the prefs ldap driver go fetch the DN for 
the user logged in, via an anonymous search, then rebind as that user to 
gain access to the prefs attributes. Pretty simple. I found a similar 
patch sent to the bug list...

    http://bugs.horde.org/ticket/?id=1786

...but I like mine better :)

S'allright?

Best,
    ~Ben Sommer

> Ben Sommer wrote:
>
>> Hi All.
>>
>> Here's my problem, and a proposed solution:
>>
>> Horde's Prefs ldap driver requires either
>>    A) a root DN and password to search for and modify a user's prefs 
>> fields, or
>>    B) a simple-to-concatenate user DN formula (such 
>> $conf['prefs']['params']['uid'] + a $base_dn)
>>
>> A) is a problem because root binds to an LDAP server are neither 
>> necessary nor desired to do most any user-level write operations.
>> B) is a problem because my person schema does not conform to such a 
>> simplistic formula. DNs look like this:
>>
>>    ueid=84kjasd99,ou=8,ou=people,dc=enc,dc=edu
>>
>> The solution is to make the Prefs ldap driver behave like most LDAP 
>> apps that need to do write operations: do an anonymous bind, search 
>> for the entry to modify using a filter, then rebind as the DN of that 
>> entry and do the write.
>>
>> I can do this. Any objections?
>>
>> Best,
>
-- 
Ben Sommer
Senior Technology Officer
Eastern Nazarene College
23 East Elm Ave
Quincy, MA 02170
(617) 745-3817


--------------010108030808070605080003
Content-Disposition: inline;
 filename="ldap.php.diff"
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit

An embedded and charset-unspecified text was scrubbed...
Name: ldap.php.diff
Url: http://lists.horde.org/archives/dev/attachments/20050415/5c3491ed/ldap.php.ksh

--------------010108030808070605080003
Content-Disposition: inline;
 filename="conf.xml.diff"
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit

An embedded and charset-unspecified text was scrubbed...
Name: conf.xml.diff
Url: http://lists.horde.org/archives/dev/attachments/20050415/5c3491ed/conf.xml.ksh

--------------010108030808070605080003--

More information about the dev mailing list