[horde] ldap authentication with horde 2.2.5
Amith Varghese
amith at xalan.com
Wed Aug 18 07:18:19 PDT 2004
I sent in a patch on 10/13/2003 that got commited the next day. This
was my e-
mail:
> Here's a patch the enhances the Auth LDAP driver by adding functionality to
> edit and remove users. In addition the driver now supports binding to the
> LDAP tree using a bind dn and password. Because many LDAP servers are set up
> differently the driver can optionally use a hook so that anyone who uses the
> driver can customize what attributes they want to use when an object is
> edited/added to the directory.
> The following files were changed:
> hooks.php.dist -> Gives an example of the _horde_hook_authldap hook
> conf.php.dist -> turns the hook off by default
> ldap.php -> the driver itself
This was a patch against CVS HEAD. The version of Horde you are running does
not support the functionality listed above.
Amith
Quoting dju` <dju.ml at elegiac.net>:
> Edwin Culp wrote:
>> Quoting dju` <dju.ml at elegiac.net>:
>>
>>> Hello,
>>>
>>> I'm trying to use a LDAP backend for authing users on horde. However,
>>> horde needs to bind with a specific "login" account before searching for
>>> username and password.
>>>
>>> Here is my configuration:
>>>
>>> $conf['auth']['driver'] = 'ldap';
>>> $conf['auth']['params']['hostspec'] = 'ldap';
>>> $conf['auth']['params']['port'] = '389';
>>> $conf['auth']['params']['basedn'] = 'ou=users,dc=domain,dc=tld';
>>> $conf['auth']['params']['uid'] = 'uid';
>>> $conf['auth']['params']['username'] = 'uid=login,dc=domain,dc=tld';
>>> $conf['auth']['params']['password'] = 'password';
>>
>>
>> I'm confused. It could be because of your version. I have no
>> idea what 2.2.5 is unfortunately. I have a couple of questions:
>>
>> Where did you find the last two lines of your configuration?
>
> I've looked into /lib/Prefs/ldap.php ($Revision: 1.14.2.20) which has
> these settings. but /lib/Auth/ldap.php ($Revision: 1.5.2.6) doesn't.
>
>> Do you not have the following or similar:
>>
>> $conf['auth']['params']['binddn'] = 'cn=manager,o=domain.tld';
>> $conf['auth']['params']['password'] =
>> 'supersecretldaprootpassword';
>
> tried with binddn param, didn't change anything.
>
>>
>> Do you have a horde/config/conf.xml? (That will help me with
>> the version)
>
> I don't have such file. I'm running horde-2.2.5 on Gentoo.
>
>>
>> On other apps like turba I configure the binddn dynamically to
>> the user credentials but that will only work in Horde, AFAIK. if
>> you have one of the older versions that isn't conf.xml I've
>> never been able to get dynamic configuration to work since it
>> went in.
>>
>> Worse case would be that using a configuration like:
>>
>> $conf['auth']['params']['hostspec'] = 'localhost';
>> $conf['auth']['params']['basedn'] = 'ou=people,o=o=domain.tld';
>> $conf['auth']['params']['binddn'] = 'cn=manager,o=o=domain.tld';
>> $conf['auth']['params']['password'] = 'supersecretrootpassword';
>> $conf['auth']['params']['uid'] = 'mail';
>> $conf['auth']['params']['objectclass'] = array('person');
>> $conf['auth']['params']['filter_type'] = 'objectclass';
>> $conf['auth']['driver'] = 'ldap';
>>
>> will work
>
> no, it didn't do the trick.
>
> Maybe files revision can give you more information? Thanks for feedback.
> --
> --dju`
> --
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
>
> !DSPAM:41232d5031118558911951!
More information about the horde
mailing list