Project

General

Profile

Développement #8215

Add a basic OpenLDAP sock/shell backend for users

Added by Benjamin Dauvergne (retour le 1er août) almost 10 years ago. Updated over 7 years ago.

Status:
Fermé
Priority:
Normal
Category:
-
Target version:
Start date:
09 September 2015
Due date:
% Done:

100%

Estimated time:
Patch proposed:
No
Planning:

Description

The goal is to provide an LDAP read access to the user directory. It's an experimental feature.

Associated revisions

Revision 24d25350 (diff)
Added by Benjamin Dauvergne (retour le 1er août) almost 10 years ago

add a basic OpenLDAP sock/shell backend (fixes #8215)

To use it, launch using socat, ex:

socat -s UNIX-LISTEN:/tmp/slapd-sock,umask=000,fork EXEC:"./authentic2-ctl --config=mysettings.py slapd-shell"

On OpenLDAP side you need to configure a backend such as:

olcDatabase={3}sock,cn=config
objectClass: olcDbSocketConfig
olcDatabase: {3}sock
olcDbSocketPath: /tmp/slapd-sock
olcSuffix: o=authentic

Only uuid, username, email, first_name and last_name are mapped (to uid,
, cn, mail, givenName and sn). The only filters supported are:

'('[uid|cn|givenName|sn|mail]= *? value *? )

That is exact match, prefix match, suffix match or substring match on
attributes uid, cn, mail, givenName and sn.

History

#1

Updated by Benjamin Dauvergne (retour le 1er août) almost 10 years ago

  • Status changed from Nouveau to Résolu (à déployer)
  • % Done changed from 0 to 100
#2

Updated by Benjamin Dauvergne (retour le 1er août) over 9 years ago

  • Status changed from Résolu (à déployer) to Solution déployée
#3

Updated by Benjamin Dauvergne (retour le 1er août) over 7 years ago

  • Status changed from Solution déployée to Fermé

Also available in: Atom PDF