[horde] Re: Horde/Imp LDAP-Prefs Code
KaalH!
kaalh at smol.org
Thu Jun 6 12:32:20 PDT 2002
Surlignage Edwin Culp <eculp at encontacto.net>:
> Quoting KaalH! <kaalh at smol.org>:
>
> | got some fresh stuff about this :
> http://kaalh.smol.org/horde/ldap.php.diff
> |
> | When $conf['prefs']['params']['rootdn'] and $conf['prefs']['params']
> | ['username'] are not set,
> KaalH,
>
> I have all the above commented out and I haven't had any problems. When
> and maybe why do I need an anonymous search and a rebind? I didn't
> realize that it was broken. Actually, I really like the bind code
> because it doesn't require a rootdn to bind.
>
> Please help me understand what I am missing here.
>
> Thanks,
>
> ed
well,
To find which DN will be used to bind the ldap server, we have several
choices :
1 - use the the rootdn (generaly when users cannot change their own entry)
2 - use the user dn
Finding the user dn in the ldap tree require a search query.
Searching requires binding, so I'm binding anonymously.
Maybe add a "initial_binddn" param will be needed to perform this search
if the ldap server is configured to refuse anonymous searching / entry
retrieving.
And finally, rebind with the user dn.
Is that what you're expected ?
kaalh
>
>
> | an anonymous search for user full dn is done, then,
> |
> | the ldap server is rebinded with the finded dn.
> |
> | This patch just works for me, complete tests are still needed.
> |
> | --
> | KaalH!
> |
> |
> | Surlignage Jon Parise <jon at horde.org>:
> |
> | > On Thu, Jun 06, 2002 at 11:14:32AM +0200, Timo Boettcher wrote:
> | >
> | > > I have some questions to you about the code in
> | > > Horde/lib/Prefs/ldap.php which is citing you as author.
> | > >
> | > > - As I read the code, all users have to be on one level (which is
> | > > selected by $basedn) of the ldap-tree. Since ldap is supposed to be
> | > > a tree, why this limitation?
> | >
> | > The code isn't finished yet. I know that's a limitation, but I lack
> | > the resources to fix it this summer.
> | >
> | > > - The users have to be in $uid=$user. $user is (according to my
> | > > ldap-logs) loginname at serverdomain. In my ldap-structure they are as
> | > > cn=FirstnameLastname, not cn=FirstnameLastname at domain. Is there
> | > > a possibility to configure this? How is $User set?
> | >
> | > $user is set according to your setup. You may want to change $uid to
> | > refer to 'mail=' instead of 'cn=' if that's how your setup works.
> | >
> | > > - Are there any changes planned for this code till release of the
> | > > .1-finals?
> | >
> | > Probably not.
> | >
> | > --
> | > Jon Parise (jon at csh.rit.edu) . Information Technology (2001)
> | > http://www.csh.rit.edu/~jon/ : Computer Science House Member
> | >
> | > --
> | > Horde mailing list
> | > Frequently Asked Questions: http://horde.org/faq/
> | > To unsubscribe, mail: horde-unsubscribe at lists.horde.org
> |
> | --
> | Horde mailing list
> | Frequently Asked Questions: http://horde.org/faq/
> | To unsubscribe, mail: horde-unsubscribe at lists.horde.org
>
>
> --
>
>
> -------------------------------------------------------------
> http://insourcery.com - Mergence of Business and Technology
> a "Griffin Plaza Partners, LLC" Company
>
> --
> Horde mailing list
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
More information about the horde
mailing list