[turba] user's account bind problem
Joselito Fenix
jojo_mti at yahoo.com
Tue Oct 4 18:10:47 PDT 2005
sources.php contained ldap and mysql (for backup
purposes only). below is the content of my sources.php
************ MYSQL ******************
$cfgSources['localsql'] = array(
'title' => _("Backup Addressbook"),
'type' => 'sql',
'params' => array(
'phptype' => 'mysql',
'hostspec' => 'localhost',
'username' => 'root',
'password' => 'password',
'database' => 'horde',
'table' => 'turba_objects',
'charset' => 'iso-8859-1'
......
......
************************************
************** LDAP ****************
......
......
$uid = Auth::getBareAuth();
$basedn = 'o=mycompany';
$cfgSources['personal_ldap'] = array(
'title' => _("My Addressbook"),
'type' => 'ldap',
'params' => array(
'server' => 'localhost',
'tls' => false,
'root' => 'cn='. $uid . ',ou=group,' . $basedn,
'bind_dn' => 'cn='. $uid . ',ou=group,' . $basedn,
'bind_password' => Auth::getCredential('password'),
'dn' => array('cn', 'uid'),
......
......
'scope' => 'one',
'charset' => 'utf-8',
'encoding' => 'utf8',
'version' => 3
}
......
......
*******************************************
tnx....
jOjO :-)
--- Silver Salonen <silver at ultrasoft.ee> wrote:
> Hi.
>
> It seems you've got enough rights in OpenLDAP. Maybe
> even too much of them.
> There's plenty of examples in internet how to set up
> access rights for
> addressbook in OpenLDAP.
>
> Just in case you could try some query from
> command-line:
> ldapsearch -s sub -W -b "ou=group,o=mycompany" -D
> "cn=user1,ou=group,o=mycompany"
>
> But still, what do you have in sources.php? Did you
> remove all the unnecessary
> sources and left only one?
>
> Silver
>
> > tnx for the reply Mr. Silver, but it's the same
> config
> > i used before in sources.php...when i choose the
> > personal_addressbook and click the search button
> in
> > turba window no ldap entries were displayed
> instead of
> > ldap entries should display in the list of ldap
> > addressbook (w/ write access only on his/her
> account).
> >
> > pls take a look (if you have time only :-) ) on my
> > slapd.conf...coz im newbie on both php and
> openldap
> > service :(
> >
> > database ldbm
> > suffix "o=mycompany"
> > rootdn "ou=group,o=mycompany"
> > rootpw password
> > directory /var/lib/ldap/example
> > access to *
> > by * write
> > by * none
> >
> > #access to dn="ou=group,o=mycompany"
> > # by dn="cn=$1, o=roadrunner" write
> > # by * none
> >
> > schemacheck on
> > lastmod on
> > index cn,sn,st
> eq,pres,sub
> >
> > tnx again.
> > jOjO
> >
> > --- Silver Salonen <silver at ultrasoft.ee> wrote:
> >
> > > Hi.
> > >
> > > I just set Turba to get addressbook from LDAP
> and it
> > > works perfectly :)
> > >
> > > What do you have in sources.php?
> > >
> > > I found source $cfgSources['personal_ldap'] to
> be
> > > quite good. In this source
> > > Horde is binding with user's username and
> password.
> > > I guess you're using the
> > > same?
> > >
> > > Do you have something like:
> > > $uid = Auth::getBareAuth();
> > > $basedn = 'o=mycompany';
> > > ...
> > > 'root' => 'cn=' . $uid . ',ou=group,' . $basedn,
> > > 'bind_dn' => 'cn=' . $uid . ',ou=group,' .
> $basedn,
> > > 'bind_password' =>
> Auth::getCredential('password'),
> > > ...
> > >
> > > Silver
> > >
> > > > hi,
> > > >
> > > > i have
> > > >
> > > > whitebox linux ver.3
> > > > apache 2.0.54
> > > > php 5.0.4
> > > > openldap-2.0.27-11
> > > > imap-2002d-2
> > > > mysql-3.23.58-1
> > > > horde 3.0.5
> > > > imp 4.0.3
> > > > turba 2.0.3
> > > > and content of my ldif(ldap entries) is
> something
> > > like
> > > > this:
> > > >
> > > > dn: o=mycompany
> > > > objectClass: top
> > > > objectClass: organization
> > > > o: mycompany
> > > > description: company
> > > >
> > > > dn: cn=admin,o=mycompany
> > > > objectClass: organizationalRole
> > > > cn: jojoadmin
> > > > description: LDAP Directory Administrator
> > > >
> > > > dn: ou=group,o=mycompany
> > > > ou: group
> > > > objectClass: top
> > > > objectClass: organizationalUnit
> > > > description: Group of Companies
> > > >
> > > > dn: cn=user1,ou=group,o=mycompany
> > > > cn: user1
> > > > ou: group
> > > > o: mycompany
> > > > cn: user1
> > > > objectClass: top
> > > > objectClass: person
> > > > objectClass: organizationalPerson
> > > > objectClass: inetOrgPerson
> > > > mail: user1 at mycompany.com
> > > > givenname: user1
> > > > sn: mail
> > > > uid: user1
> > > > userPassword: password
> > > > .....
> > > > .....
> > > >
> > > > everything works fine (horde-imp based login
> > > > authentication, mail service etc.) except for
> the
> > > > turba. i used ldap service as my addressbook
> but
> > > > turba-mysql based addressbook works
> > > perfectly...anyway
> > > > when i tried to use
> > > http://xx.xx/horde/turba/test.php
> > > > for testing,but it gives me an error of
> "UNABLE TO
> > > > BIND AS USER1 TO LDAP SERVER". i think problem
> is
> > > on
> > > > the source.php in turba/config but for the
> past
> > > 3weeks
> > > > searching for the right configuration in the
> web,
> > > > still i haven't found the right settings in
> > > > source.php.hope you guys can give me the
> solutions
> > > > regarding this, and also if you can give the
> > > config in
> > > > slapd.conf of openldap regarding acl user's
> > > access.
> > > >
> > > > any help would be appreciated .tnx in advance
> > > >
> > > > jOjO
> > > --
> > > Turba mailing list - Join the hunt:
> > > http://horde.org/bounties/#turba
> > > Frequently Asked Questions:
> http://horde.org/faq/
> > > To unsubscribe, mail:
> > > turba-unsubscribe at lists.horde.org
> > >
> >
> >
> >
> >
> > __________________________________
> > Yahoo! Mail - PC Magazine Editors' Choice 2005
> > http://mail.yahoo.com
> > --
> > Turba mailing list - Join the hunt:
> http://horde.org/bounties/#turba
> > Frequently Asked Questions: http://horde.org/faq/
> > To unsubscribe, mail:
> turba-unsubscribe at lists.horde.org
> >
> --
> Turba mailing list - Join the hunt:
> http://horde.org/bounties/#turba
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail:
> turba-unsubscribe at lists.horde.org
>
__________________________________
Yahoo! Mail - PC Magazine Editors' Choice 2005
http://mail.yahoo.com
More information about the turba
mailing list