Project

General

Profile

Development #8215

Add a basic OpenLDAP sock/shell backend for users

Added by Benjamin Dauvergne almost 4 years ago. Updated over 1 year ago.

Status:
Fermé
Priority:
Normal
Category:
-
Target version:
Start date:
09 Sep 2015
Due date:
% Done:

100%

Patch proposed:
No
Planning:
No

Description

The goal is to provide an LDAP read access to the user directory. It's an experimental feature.

Associated revisions

Revision 24d25350 (diff)
Added by Benjamin Dauvergne almost 4 years ago

add a basic OpenLDAP sock/shell backend (fixes #8215)

To use it, launch using socat, ex:

socat -s UNIX-LISTEN:/tmp/slapd-sock,umask=000,fork EXEC:"./authentic2-ctl --config=mysettings.py slapd-shell"

On OpenLDAP side you need to configure a backend such as:

olcDatabase={3}sock,cn=config
objectClass: olcDbSocketConfig
olcDatabase: {3}sock
olcDbSocketPath: /tmp/slapd-sock
olcSuffix: o=authentic

Only uuid, username, email, first_name and last_name are mapped (to uid,
, cn, mail, givenName and sn). The only filters supported are:

'('[uid|cn|givenName|sn|mail]= *? value *? )

That is exact match, prefix match, suffix match or substring match on
attributes uid, cn, mail, givenName and sn.

History

#1 Updated by Benjamin Dauvergne almost 4 years ago

  • % Done changed from 0 to 100
  • Status changed from Nouveau to Résolu (à déployer)

#2 Updated by Benjamin Dauvergne over 3 years ago

  • Status changed from Résolu (à déployer) to Solution déployée

#3 Updated by Benjamin Dauvergne over 1 year ago

  • Status changed from Solution déployée to Fermé

Also available in: Atom PDF