[turba] user's account bind problem

Silver Salonen silver at ultrasoft.ee
Thu Oct 6 22:47:05 PDT 2005 

Hi.

Yes, it's possible to use simple authentication. In fact, that's what I'm 
using. In fact, I don't know much anything about authenticating through SASL 
in LDAP :)

But that command-line example I wrote before.. did you try it and did it work 
successfully for you? That uses simple authentication as well..

Silver

> mr. silver, i forgot to say is it possible to bind a
> simple authentication in imp/turba/ldap? coz im using
> simple authentication instead of sasl method although
> i have several cyrus-sasl packages installed including
> cyrus-sasl-gssapi and cyrus-sasl-plain
> 
> tnx,
> jOjO
> 
> --- Joselito Fenix <jojo_mti at yahoo.com> wrote:
> 
> > sources.php contained ldap and mysql (for backup
> > purposes only). below is the content of my
> > sources.php
> > 
> > ************ MYSQL ******************
> > $cfgSources['localsql'] = array(
> >     'title' => _("Backup Addressbook"),
> >     'type' => 'sql',
> > 'params' => array(
> >          'phptype' => 'mysql',
> >          'hostspec' => 'localhost',
> >          'username' => 'root',
> >          'password' => 'password',
> >          'database' => 'horde',
> >          'table' => 'turba_objects',
> >          'charset' => 'iso-8859-1'
> > ......
> > ......
> > ************************************
> > 
> > ************** LDAP ****************
> > ......
> > ......
> > $uid = Auth::getBareAuth();
> > $basedn = 'o=mycompany';
> > $cfgSources['personal_ldap'] = array(
> >     'title' => _("My Addressbook"),
> >     'type' => 'ldap',
> >     'params' => array(
> >         'server' => 'localhost',
> >         'tls' => false,
> > 'root' => 'cn='. $uid . ',ou=group,' . $basedn,
> > 'bind_dn' => 'cn='. $uid . ',ou=group,' . $basedn,
> > 'bind_password' => Auth::getCredential('password'),
> > 'dn' => array('cn', 'uid'),
> > ......
> > ......
> >  'scope' => 'one',
> >         'charset' => 'utf-8',
> >         'encoding' => 'utf8',
> >         'version' => 3
> > }
> > ......
> > ......
> > *******************************************
> > 
> > tnx....
> > jOjO :-)
> > 
> > 
> > --- Silver Salonen <silver at ultrasoft.ee> wrote:
> > 
> > > Hi.
> > > 
> > > It seems you've got enough rights in OpenLDAP.
> > Maybe
> > > even too much of them. 
> > > There's plenty of examples in internet how to set
> > up
> > > access rights for 
> > > addressbook in OpenLDAP.
> > > 
> > > Just in case you could try some query from
> > > command-line:
> > > ldapsearch -s sub -W -b "ou=group,o=mycompany" -D 
> > > "cn=user1,ou=group,o=mycompany"
> > > 
> > > But still, what do you have in sources.php? Did
> > you
> > > remove all the unnecessary 
> > > sources and left only one?
> > > 
> > > Silver
> > > 
> > > > tnx for the reply Mr. Silver, but it's the same
> > > config
> > > > i used before in sources.php...when i choose the
> > > > personal_addressbook and click the search button
> > > in
> > > > turba window no ldap entries were displayed
> > > instead of
> > > > ldap entries should display in the list of ldap
> > > > addressbook (w/ write access only on his/her
> > > account).
> > > > 
> > > > pls take a look (if you have time only :-) ) on
> > my
> > > > slapd.conf...coz im newbie on both php and
> > > openldap
> > > > service :(
> > > > 
> > > > database        ldbm
> > > > suffix          "o=mycompany"
> > > > rootdn          "ou=group,o=mycompany"
> > > > rootpw          password
> > > > directory       /var/lib/ldap/example
> > > > access to *
> > > >        by * write
> > > >        by * none
> > > > 
> > > > #access to dn="ou=group,o=mycompany"
> > > > #        by dn="cn=$1, o=roadrunner" write
> > > > #        by * none
> > > > 
> > > > schemacheck     on
> > > > lastmod         on
> > > > index           cn,sn,st               
> > > eq,pres,sub
> > > > 
> > > > tnx again.
> > > > jOjO
> > > > 
> > > > --- Silver Salonen <silver at ultrasoft.ee> wrote:
> > > > 
> > > > > Hi.
> > > > > 
> > > > > I just set Turba to get addressbook from LDAP
> > > and it
> > > > > works perfectly :)
> > > > > 
> > > > > What do you have in sources.php?
> > > > > 
> > > > > I found source $cfgSources['personal_ldap'] to
> > > be
> > > > > quite good. In this source 
> > > > > Horde is binding with user's username and
> > > password.
> > > > > I guess you're using the 
> > > > > same?
> > > > > 
> > > > > Do you have something like:
> > > > > $uid = Auth::getBareAuth();
> > > > > $basedn = 'o=mycompany';
> > > > > ...
> > > > > 'root' => 'cn=' . $uid . ',ou=group,' .
> > $basedn,
> > > > > 'bind_dn' => 'cn=' . $uid . ',ou=group,' .
> > > $basedn,
> > > > > 'bind_password' =>
> > > Auth::getCredential('password'),
> > > > > ...
> > > > > 
> > > > > Silver
> > > > > 
> > > > > > hi,
> > > > > > 
> > > > > > i have
> > > > > > 
> > > > > > whitebox linux ver.3
> > > > > > apache 2.0.54
> > > > > > php 5.0.4
> > > > > > openldap-2.0.27-11
> > > > > > imap-2002d-2
> > > > > > mysql-3.23.58-1
> > > > > > horde 3.0.5
> > > > > > imp 4.0.3
> > > > > > turba 2.0.3
> > > > > > and content of my ldif(ldap entries) is
> > > something
> > > > > like
> > > > > > this:
> > > > > > 
> > > > > > dn: o=mycompany
> > > > > > objectClass: top
> > > > > > objectClass: organization
> > > > > > o: mycompany
> > > > > > description: company
> > > > > > 
> > > > > > dn: cn=admin,o=mycompany
> > > > > > objectClass: organizationalRole
> > > > > > cn: jojoadmin
> > > > > > description: LDAP Directory Administrator
> > > > > > 
> > > > > > dn: ou=group,o=mycompany
> > > > > > ou: group
> > > > > > objectClass: top
> > > > > > objectClass: organizationalUnit
> > > > > > description: Group of Companies
> > > > > > 
> > > > > > dn: cn=user1,ou=group,o=mycompany
> > > > > > cn: user1
> > > > > > ou: group
> > > > > > o: mycompany
> > > > > > cn: user1
> > > > > > objectClass: top
> > > > > > objectClass: person
> > > > > > objectClass: organizationalPerson
> > > > > > objectClass: inetOrgPerson
> > > > > > mail: user1 at mycompany.com
> > > > > > givenname: user1
> > > > > > sn: mail
> > > > > > uid: user1
> > > > > > userPassword: password
> > > > > > .....
> > > > > > .....
> > > > > > 
> > > > > > everything works fine (horde-imp based login
> > > > > > authentication, mail service etc.) except
> > for
> > > the
> > > > > > turba. i used ldap service as my addressbook
> > 
> === message truncated ===
> 
> 
> 
> 		
> __________________________________ 
> Yahoo! Mail - PC Magazine Editors' Choice 2005 
> http://mail.yahoo.com
> -- 
> Turba mailing list - Join the hunt: http://horde.org/bounties/#turba
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: turba-unsubscribe at lists.horde.org
>

More information about the turba mailing list