[Xerte] Using toolkits with LDAP

Peter Huppertz peter.huppertz at baselgovernance.org
Tue Mar 10 12:05:50 GMT 2009


Thanks for the info. Indeed the hardcoded filter 'sAMAccountName' was the 
problem. In my case the filter attribute is 'cn'. I think it depends on 
the ldap template you use. So I guess it would make sense to add the 
filter attribute to the variable settings in the setup. Even more because 
some people perhaps would like to use the email-address or another 
attribute for authentication.
Also the input field for the username does not allow more than 12 letters. 
In my case this is too short.

Peter



From:
Patrick Lockley <Patrick.Lockley at nottingham.ac.uk>
To:
"Xerte discussion list" <xerte at lists.nottingham.ac.uk>
Date:
10.03.2009 11:25
Subject:
RE: [Xerte] Using toolkits with LDAP
Sent by:
xerte-bounces at lists.nottingham.ac.uk



I’m not an LDAP expert, so I’ve just used some standard code.
 
Xerte does know what to look for, but it’s possible that the structure 
that’s worked previously is different from yours.
 
If there are any settings that are different, you’ll find them in the 
valid_login function in website_code/php/login_library.php.
 
The only fixed strings are 
 
$ldap_filter_attr = 'sAMAccountName';
$ldap_search_attr = array('firstname' => 'givenname', 'lastname' => 'sn');
 
 
From: xerte-bounces at lists.nottingham.ac.uk [
mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Julian Tenney
Sent: 10 March 2009 09:34
To: Xerte discussion list
Subject: RE: [Xerte] Using toolkits with LDAP
 
I’ll let Pat chime in here, but it would definitely be worthwhile trying 
this with the pre-release version of toolkits we now have ready for final 
testing out in the community. We can send you the files, or make a link 
available. If others have access to a server and would like to try the 
pre-release version please let us know. We’d like to give a people a 
chance to discover any issues there might be in rolling this out to 
disparate systems,
 
I’ll ask Pat to zip it all up and put some installation instructions 
together. We would like to have version 1.0 completed by the end of this 
week, so any final feedback would be brilliant,
 
Many thanks,
 
J
 
From: xerte-bounces at lists.nottingham.ac.uk [
mailto:xerte-bounces at lists.nottingham.ac.uk] On Behalf Of Peter Huppertz
Sent: Tuesday, March 10, 2009 8:13 AM
To: xerte at lists.nottingham.ac.uk
Subject: [Xerte] Using toolkits with LDAP
 
Dear List, 

I installed toolkits 0.9 from the website in my local XAMPP. I also have a 
working locale installation of OpenLDAP (Mac OS X). The structure is as 
follows: 

dc=example,dc=com 
   ou=people 
       cn=user1 

In Xerte I use the following settings: 

$site->ldap_host = "ldap://localhost"; 
$site->ldap_port = 389; 

$site->bind_pwd="supersecret"; 
$site->basedn="dc=example,dc=com"; 
$site->bind_dn = 'cn=Manager,dc=example,dc=com'; 

When I try to login with "user1" Xerte it tells me: "Sorry that password 
combination was not correct". 
I think Xerte doesn't know which attribute to look for the username?! 

Peter_______________________________________________
Xerte mailing list
Xerte at lists.nottingham.ac.uk
http://lists.nottingham.ac.uk/mailman/listinfo/xerte



-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.nottingham.ac.uk/pipermail/xerte/attachments/20090310/bb3758b3/attachment.html


More information about the Xerte mailing list