[turba] user's account bind problem

Joselito Fenix jojo_mti at yahoo.com
Tue Oct 4 18:10:47 PDT 2005 

sources.php contained ldap and mysql (for backup
purposes only). below is the content of my sources.php

************ MYSQL ******************
$cfgSources['localsql'] = array(
    'title' => _("Backup Addressbook"),
    'type' => 'sql',
'params' => array(
         'phptype' => 'mysql',
         'hostspec' => 'localhost',
         'username' => 'root',
         'password' => 'password',
         'database' => 'horde',
         'table' => 'turba_objects',
         'charset' => 'iso-8859-1'
......
......
************************************

************** LDAP ****************
......
......
$uid = Auth::getBareAuth();
$basedn = 'o=mycompany';
$cfgSources['personal_ldap'] = array(
    'title' => _("My Addressbook"),
    'type' => 'ldap',
    'params' => array(
        'server' => 'localhost',
        'tls' => false,
'root' => 'cn='. $uid . ',ou=group,' . $basedn,
'bind_dn' => 'cn='. $uid . ',ou=group,' . $basedn,
'bind_password' => Auth::getCredential('password'),
'dn' => array('cn', 'uid'),
......
......
 'scope' => 'one',
        'charset' => 'utf-8',
        'encoding' => 'utf8',
        'version' => 3
}
......
......
*******************************************

tnx....
jOjO :-)


--- Silver Salonen <silver at ultrasoft.ee> wrote:

> Hi.
> 
> It seems you've got enough rights in OpenLDAP. Maybe
> even too much of them. 
> There's plenty of examples in internet how to set up
> access rights for 
> addressbook in OpenLDAP.
> 
> Just in case you could try some query from
> command-line:
> ldapsearch -s sub -W -b "ou=group,o=mycompany" -D 
> "cn=user1,ou=group,o=mycompany"
> 
> But still, what do you have in sources.php? Did you
> remove all the unnecessary 
> sources and left only one?
> 
> Silver
> 
> > tnx for the reply Mr. Silver, but it's the same
> config
> > i used before in sources.php...when i choose the
> > personal_addressbook and click the search button
> in
> > turba window no ldap entries were displayed
> instead of
> > ldap entries should display in the list of ldap
> > addressbook (w/ write access only on his/her
> account).
> > 
> > pls take a look (if you have time only :-) ) on my
> > slapd.conf...coz im newbie on both php and
> openldap
> > service :(
> > 
> > database        ldbm
> > suffix          "o=mycompany"
> > rootdn          "ou=group,o=mycompany"
> > rootpw          password
> > directory       /var/lib/ldap/example
> > access to *
> >        by * write
> >        by * none
> > 
> > #access to dn="ou=group,o=mycompany"
> > #        by dn="cn=$1, o=roadrunner" write
> > #        by * none
> > 
> > schemacheck     on
> > lastmod         on
> > index           cn,sn,st               
> eq,pres,sub
> > 
> > tnx again.
> > jOjO
> > 
> > --- Silver Salonen <silver at ultrasoft.ee> wrote:
> > 
> > > Hi.
> > > 
> > > I just set Turba to get addressbook from LDAP
> and it
> > > works perfectly :)
> > > 
> > > What do you have in sources.php?
> > > 
> > > I found source $cfgSources['personal_ldap'] to
> be
> > > quite good. In this source 
> > > Horde is binding with user's username and
> password.
> > > I guess you're using the 
> > > same?
> > > 
> > > Do you have something like:
> > > $uid = Auth::getBareAuth();
> > > $basedn = 'o=mycompany';
> > > ...
> > > 'root' => 'cn=' . $uid . ',ou=group,' . $basedn,
> > > 'bind_dn' => 'cn=' . $uid . ',ou=group,' .
> $basedn,
> > > 'bind_password' =>
> Auth::getCredential('password'),
> > > ...
> > > 
> > > Silver
> > > 
> > > > hi,
> > > > 
> > > > i have
> > > > 
> > > > whitebox linux ver.3
> > > > apache 2.0.54
> > > > php 5.0.4
> > > > openldap-2.0.27-11
> > > > imap-2002d-2
> > > > mysql-3.23.58-1
> > > > horde 3.0.5
> > > > imp 4.0.3
> > > > turba 2.0.3
> > > > and content of my ldif(ldap entries) is
> something
> > > like
> > > > this:
> > > > 
> > > > dn: o=mycompany
> > > > objectClass: top
> > > > objectClass: organization
> > > > o: mycompany
> > > > description: company
> > > > 
> > > > dn: cn=admin,o=mycompany
> > > > objectClass: organizationalRole
> > > > cn: jojoadmin
> > > > description: LDAP Directory Administrator
> > > > 
> > > > dn: ou=group,o=mycompany
> > > > ou: group
> > > > objectClass: top
> > > > objectClass: organizationalUnit
> > > > description: Group of Companies
> > > > 
> > > > dn: cn=user1,ou=group,o=mycompany
> > > > cn: user1
> > > > ou: group
> > > > o: mycompany
> > > > cn: user1
> > > > objectClass: top
> > > > objectClass: person
> > > > objectClass: organizationalPerson
> > > > objectClass: inetOrgPerson
> > > > mail: user1 at mycompany.com
> > > > givenname: user1
> > > > sn: mail
> > > > uid: user1
> > > > userPassword: password
> > > > .....
> > > > .....
> > > > 
> > > > everything works fine (horde-imp based login
> > > > authentication, mail service etc.) except for
> the
> > > > turba. i used ldap service as my addressbook
> but
> > > > turba-mysql based addressbook works
> > > perfectly...anyway
> > > > when i tried to use
> > > http://xx.xx/horde/turba/test.php
> > > > for testing,but it gives me an error of
> "UNABLE TO
> > > > BIND AS USER1 TO LDAP SERVER". i think problem
> is
> > > on
> > > > the source.php in turba/config but for the
> past
> > > 3weeks
> > > > searching for the right configuration in the
> web,
> > > > still i haven't found the right settings in
> > > > source.php.hope you guys can give me the
> solutions
> > > > regarding this, and also if you can give the
> > > config in
> > > > slapd.conf of openldap regarding acl user's
> > > access.
> > > > 
> > > > any help would be appreciated .tnx in advance
> > > > 
> > > > jOjO
> > > -- 
> > > Turba mailing list - Join the hunt:
> > > http://horde.org/bounties/#turba
> > > Frequently Asked Questions:
> http://horde.org/faq/
> > > To unsubscribe, mail:
> > > turba-unsubscribe at lists.horde.org
> > > 
> > 
> > 
> > 
> > 		
> > __________________________________ 
> > Yahoo! Mail - PC Magazine Editors' Choice 2005 
> > http://mail.yahoo.com
> > -- 
> > Turba mailing list - Join the hunt:
> http://horde.org/bounties/#turba
> > Frequently Asked Questions: http://horde.org/faq/
> > To unsubscribe, mail:
> turba-unsubscribe at lists.horde.org
> > 
> -- 
> Turba mailing list - Join the hunt:
> http://horde.org/bounties/#turba
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail:
> turba-unsubscribe at lists.horde.org
> 



		
__________________________________ 
Yahoo! Mail - PC Magazine Editors' Choice 2005 
http://mail.yahoo.com

More information about the turba mailing list