<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML xmlns="http://www.w3.org/TR/REC-html40" xmlns:v =
"urn:schemas-microsoft-com:vml" xmlns:o =
"urn:schemas-microsoft-com:office:office" xmlns:w =
"urn:schemas-microsoft-com:office:word" xmlns:x =
"urn:schemas-microsoft-com:office:excel" xmlns:p =
"urn:schemas-microsoft-com:office:powerpoint" xmlns:a =
"urn:schemas-microsoft-com:office:access" xmlns:dt =
"uuid:C2F41010-65B3-11d1-A29F-00AA00C14882" xmlns:s =
"uuid:BDC6E3F0-6DA3-11d1-A2A3-00AA00C14882" xmlns:rs =
"urn:schemas-microsoft-com:rowset" xmlns:z = "#RowsetSchema" xmlns:b =
"urn:schemas-microsoft-com:office:publisher" xmlns:ss =
"urn:schemas-microsoft-com:office:spreadsheet" xmlns:c =
"urn:schemas-microsoft-com:office:component:spreadsheet" xmlns:odc =
"urn:schemas-microsoft-com:office:odc" xmlns:oa =
"urn:schemas-microsoft-com:office:activation" xmlns:html =
"http://www.w3.org/TR/REC-html40" xmlns:q =
"http://schemas.xmlsoap.org/soap/envelope/" xmlns:rtc =
"http://microsoft.com/officenet/conferencing" XMLNS:D = "DAV:" XMLNS:Repl =
"http://schemas.microsoft.com/repl/" xmlns:mt =
"http://schemas.microsoft.com/sharepoint/soap/meetings/" xmlns:x2 =
"http://schemas.microsoft.com/office/excel/2003/xml" xmlns:ppda =
"http://www.passport.com/NameSpace.xsd" xmlns:ois =
"http://schemas.microsoft.com/sharepoint/soap/ois/" xmlns:dir =
"http://schemas.microsoft.com/sharepoint/soap/directory/" xmlns:ds =
"http://www.w3.org/2000/09/xmldsig#" xmlns:dsp =
"http://schemas.microsoft.com/sharepoint/dsp" xmlns:udc =
"http://schemas.microsoft.com/data/udc" xmlns:xsd =
"http://www.w3.org/2001/XMLSchema" xmlns:sub =
"http://schemas.microsoft.com/sharepoint/soap/2002/1/alerts/" xmlns:ec =
"http://www.w3.org/2001/04/xmlenc#" xmlns:sp =
"http://schemas.microsoft.com/sharepoint/" xmlns:sps =
"http://schemas.microsoft.com/sharepoint/soap/" xmlns:xsi =
"http://www.w3.org/2001/XMLSchema-instance" xmlns:udcs =
"http://schemas.microsoft.com/data/udc/soap" xmlns:udcxf =
"http://schemas.microsoft.com/data/udc/xmlfile" xmlns:udcp2p =
"http://schemas.microsoft.com/data/udc/parttopart" xmlns:wf =
"http://schemas.microsoft.com/sharepoint/soap/workflow/" xmlns:dsss =
"http://schemas.microsoft.com/office/2006/digsig-setup" xmlns:dssi =
"http://schemas.microsoft.com/office/2006/digsig" xmlns:mdssi =
"http://schemas.openxmlformats.org/package/2006/digital-signature" xmlns:mver =
"http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:m =
"http://schemas.microsoft.com/office/2004/12/omml" xmlns:mrels =
"http://schemas.openxmlformats.org/package/2006/relationships" xmlns:spwp =
"http://microsoft.com/sharepoint/webpartpages" xmlns:ex12t =
"http://schemas.microsoft.com/exchange/services/2006/types" xmlns:ex12m =
"http://schemas.microsoft.com/exchange/services/2006/messages" xmlns:pptsl =
"http://schemas.microsoft.com/sharepoint/soap/SlideLibrary/" xmlns:spsl =
"http://microsoft.com/webservices/SharePointPortalServer/PublishedLinksService"
XMLNS:Z = "urn:schemas-microsoft-com:" xmlns:st = "�"><HEAD>
<META http-equiv=Content-Type content="text/html; charset=us-ascii">
<META content="MSHTML 6.00.6000.16825" name=GENERATOR><!--[if !mso]>
<STYLE>v\:* {
BEHAVIOR: url(#default#VML)
}
o\:* {
BEHAVIOR: url(#default#VML)
}
w\:* {
BEHAVIOR: url(#default#VML)
}
.shape {
BEHAVIOR: url(#default#VML)
}
</STYLE>
<![endif]-->
<STYLE>@font-face {
font-family: Cambria Math;
}
@font-face {
font-family: Calibri;
}
@font-face {
font-family: Tahoma;
}
@font-face {
font-family: Verdana;
}
@page Section1 {size: 612.0pt 792.0pt; margin: 72.0pt 72.0pt 72.0pt 72.0pt; }
P.MsoNormal {
FONT-SIZE: 12pt; MARGIN: 0cm 0cm 0pt; FONT-FAMILY: "Times New Roman","serif"
}
LI.MsoNormal {
FONT-SIZE: 12pt; MARGIN: 0cm 0cm 0pt; FONT-FAMILY: "Times New Roman","serif"
}
DIV.MsoNormal {
FONT-SIZE: 12pt; MARGIN: 0cm 0cm 0pt; FONT-FAMILY: "Times New Roman","serif"
}
A:link {
COLOR: blue; TEXT-DECORATION: underline; mso-style-priority: 99
}
SPAN.MsoHyperlink {
COLOR: blue; TEXT-DECORATION: underline; mso-style-priority: 99
}
A:visited {
COLOR: purple; TEXT-DECORATION: underline; mso-style-priority: 99
}
SPAN.MsoHyperlinkFollowed {
COLOR: purple; TEXT-DECORATION: underline; mso-style-priority: 99
}
P {
FONT-SIZE: 12pt; MARGIN-LEFT: 0cm; MARGIN-RIGHT: 0cm; FONT-FAMILY: "Times New Roman","serif"; mso-style-priority: 99; mso-margin-top-alt: auto; mso-margin-bottom-alt: auto
}
SPAN.EmailStyle18 {
FONT-WEIGHT: normal; COLOR: blue; FONT-STYLE: normal; FONT-FAMILY: "Verdana","sans-serif"; TEXT-DECORATION: none; mso-style-type: personal
}
SPAN.EmailStyle19 {
FONT-WEIGHT: normal; COLOR: blue; FONT-STYLE: normal; FONT-FAMILY: "Verdana","sans-serif"; TEXT-DECORATION: none; mso-style-type: personal
}
SPAN.EmailStyle20 {
FONT-WEIGHT: normal; COLOR: blue; FONT-STYLE: normal; FONT-FAMILY: "Verdana","sans-serif"; TEXT-DECORATION: none; mso-style-type: personal
}
SPAN.EmailStyle21 {
FONT-WEIGHT: normal; COLOR: blue; FONT-STYLE: normal; FONT-FAMILY: "Verdana","sans-serif"; TEXT-DECORATION: none; mso-style-type: personal-reply
}
.MsoChpDefault {
FONT-SIZE: 10pt; mso-style-type: export-only
}
DIV.Section1 {
page: Section1
}
</STYLE>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></HEAD>
<BODY lang=EN-GB vLink=purple link=blue>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2>Hello Pat,</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2>Thanks for the script.</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2>I initially commented out the first lines that set the
$xerte_toolkits_site-> values and used the file as a replacement for
login_library.php</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2>This resulted in an "unable to bind" message for line
185.</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2>I replaced the reference to 'dn' with sAMAccountName and
then was logged in to Xerte even though the password I supplied was incorrect,
though there was an "unable to bind" message then for line 64. I replaced the
'dn' reference again with a sAMAccountName and that ended any further
errors.</FONT></SPAN></DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2></FONT></SPAN> </DIV>
<DIV dir=ltr align=left><SPAN class=607315011-21052009><FONT face=Arial
color=#0000ff size=2>I then changed the $xerte_toolkits_site-> lines to echo
out their values.</FONT></SPAN></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=607315011-21052009>All
the values echoed out the matching values that are contained in the database
settings for the site.</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=607315011-21052009></SPAN></FONT> </DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=607315011-21052009>I have
deleted the server settings and dn values from the output below so as not
to make them public but the rest is as it was output.</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=607315011-21052009></SPAN></FONT> </DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=607315011-21052009>It
appears that the connection to ldap is working, the matching of the entered
username is correctly taking place and values from the LDAP account are being
returned, but that there is no check taking place of the password, other
than that one has been entered. So as long as you enter a valid ldap account
name you are in! Any ideas as to why this may be happening will be most
welcome.</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=607315011-21052009></SPAN></FONT> </DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=607315011-21052009>Output
starts with the value LDAP_preference, there is no value entered in our database
for LDAP_filter.</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=607315011-21052009></SPAN></FONT> </DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=607315011-21052009>Kind
regards</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=607315011-21052009></SPAN></FONT> </DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=607315011-21052009>Johnathan</SPAN></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN class=607315011-21052009><PRE>sAMAccountName<BR><PRE>Array
(
[count] => 0
)
</PRE><BR><PRE>Array
(
[count] => 0
)
</PRE><BR><PRE>Array
(
[count] => 0
)
</PRE><BR><PRE>Array
(
[count] => 0
)
</PRE><BR><PRE>Array
(
[count] => 1
[0] => Array
(
[sn] => Array
(
[count] => 1
[0] => Kemp
)
[0] => sn
[givenname] => Array
(
[count] => 1
[0] => Johnathan
)
[1] => givenname
[count] => 2
[dn] => CN=Johnathan Kemp, etc... )
)
</PRE></PRE><PRE> </PRE></SPAN></FONT></DIV>
<P><FONT face=Arial size=2>Johnathan Kemp<BR>IT Dev. Manager<BR>Connexions
Staffordshire<BR></FONT><A href="http://www.cxstaffs.co.uk/"><FONT face=Arial
size=2>www.cxstaffs.co.uk</FONT></A><BR><FONT face=Arial size=2>01785
355714<BR></FONT></P>
<P> </P>
<DIV> </DIV><BR>
<DIV class=OutlookMessageHeader lang=en-us dir=ltr align=left>
<HR tabIndex=-1>
<FONT face=Tahoma size=2><B>From:</B> xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Patrick
Lockley<BR><B>Sent:</B> 20 May 2009 15:58<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE:
[Xerte]ConfigurationofLDAPauthenticationandthelogin_library.phpfile<BR></FONT><BR></DIV>
<DIV></DIV>
<DIV class=Section1>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Hello,<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">So if
you’re using an LDAP password that means it’s the same as we have here, and ours
works.<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">For
reference - the “lighter” version is without the password.<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I
would imagine the problem has come with the changed code and how the LDAP seach
occurs.<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I’ve
attached an script with a few more options in.<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Basically
you’ll get LDAP error messages (they are usually suppressed) and see the array
LDAP returns.<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Pat<o:p></o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<DIV>
<DIV
style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: #b5c4df 1pt solid; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; BORDER-LEFT: medium none; PADDING-TOP: 3pt; BORDER-BOTTOM: medium none">
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><B><SPAN lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Johnathan
Kemp<BR><B>Sent:</B> 20 May 2009 15:15<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE: [Xerte]
ConfigurationofLDAPauthenticationandthelogin_library.phpfile<o:p></o:p></SPAN></P></DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><o:p> </o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Hello
Pat,</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Sorry
about missing the password bit.</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">On the
ldap page displayed by management.php I have</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">An ldap
password</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">The ldap
base required to find the user accounts</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">The ldap
bind that uniquely identifies the ldap account</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">ldap
main filter set to sAMAccountName</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">No value
set in the ldap second filter.</SPAN><o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">I copied
the code from your authenticate_to_host function in login_library.php and ran
the code by setting variables to provide it with the equivalent of the inputs
the function expects</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Once the
code is edited to replace line 171 </SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'"> if(@ldap_bind($ds,
$entry[0]['dn'], $password)) {</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">with</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'"> if(@ldap_bind($ds,
$entry[0]['sAMAccountName'], $password)) {</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">the code
then executes returning true from line 179 </SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">It only
returns true if the LDAP password is correct and the value for
$toolkits_username is a valid ldap sAMAccountName.</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">It will
return true if the value for $password is "" a wrong password or the
correct password.</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Is there
any way I could be running the "lighter version" without realising
it?</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Kind
regards</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Johnathan</SPAN><o:p></o:p></P></DIV>
<P style="MARGIN-LEFT: 36pt"> <o:p></o:p></P>
<P style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Johnathan Kemp<BR>IT
Dev. Manager<BR>Connexions Staffordshire<BR></SPAN><A
href="http://www.cxstaffs.co.uk/"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">www.cxstaffs.co.uk</SPAN></A><BR><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">01785
355714<o:p></o:p></SPAN></P>
<P style="MARGIN-LEFT: 36pt"> <o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"> <o:p></o:p></P></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><o:p> </o:p></P>
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center"
align=center><SPAN lang=EN-US>
<HR align=center width="100%" SIZE=2>
</SPAN></DIV>
<P class=MsoNormal
style="MARGIN-BOTTOM: 12pt; MARGIN-LEFT: 36pt; MARGIN-RIGHT: 0cm; mso-margin-top-alt: 0cm"><B><SPAN
lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Patrick
Lockley<BR><B>Sent:</B> 20 May 2009 13:36<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE: [Xerte] Configuration
ofLDAPauthenticationandthelogin_library.phpfile</SPAN><SPAN
lang=EN-US><o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Thank
you Monaco<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Are
you using an LDAP password for the host, or the “lighter”
version?<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Yours<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Terry<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 36pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<DIV>
<DIV
style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: #b5c4df 1pt solid; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; BORDER-LEFT: medium none; PADDING-TOP: 3pt; BORDER-BOTTOM: medium none">
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><B><SPAN lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Johnathan
Kemp<BR><B>Sent:</B> 20 May 2009 09:24<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE: [Xerte] Configuration
ofLDAPauthenticationandthelogin_library.php
file<o:p></o:p></SPAN></P></DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><o:p> </o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">OK the
results of the Monaco jury are</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">No
user name / No password = please enter your username and
password</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Username
wrong / password wrong = sorry that password combination was not
correct</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Username
right / no password = please enter your password</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Username
right / wrong password = successful log in</SPAN><o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"> <o:p></o:p></P></DIV>
<P style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Johnathan Kemp<BR>IT
Dev. Manager<BR>Connexions Staffordshire<BR></SPAN><A
href="http://www.cxstaffs.co.uk/"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">www.cxstaffs.co.uk</SPAN></A><BR><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">01785
355714</SPAN><o:p></o:p></P>
<P style="MARGIN-LEFT: 72pt"> <o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"> <o:p></o:p></P></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><o:p> </o:p></P>
<DIV style="MARGIN-LEFT: 36pt">
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center"
align=center><SPAN lang=EN-US>
<HR align=center width="100%" SIZE=2>
</SPAN></DIV></DIV>
<P class=MsoNormal
style="MARGIN-BOTTOM: 12pt; MARGIN-LEFT: 72pt; MARGIN-RIGHT: 0cm; mso-margin-top-alt: 0cm"><B><SPAN
lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Patrick
Lockley<BR><B>Sent:</B> 19 May 2009 13:45<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE: [Xerte] Configuration of
LDAPauthenticationandthelogin_library.php file</SPAN><SPAN
lang=EN-US><o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Are
supplying an LDAP password?<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Try
the following combos<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">No
user name / No password<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Username
wrong / password wrong<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Username
right / no password<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 72pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<DIV>
<DIV
style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: #b5c4df 1pt solid; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; BORDER-LEFT: medium none; PADDING-TOP: 3pt; BORDER-BOTTOM: medium none">
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><B><SPAN lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Johnathan
Kemp<BR><B>Sent:</B> 19 May 2009 13:45<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE: [Xerte] Configuration of LDAP
authenticationandthelogin_library.php file<o:p></o:p></SPAN></P></DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><o:p> </o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Hello
Pat,</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Many
thanks for your detailed reply. I will work through it and your reply about
Xerte setup after lunch.</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">I should
just add that it appears with respect to my having a working LDAP login that I
spoke to soon :-(</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">With the
original version of the login_library.php file I could not log in at
all.</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">When I
changed it to use the sAMAccountName (the field that contains the user name we
use to login on our network) I was able to log on to my Toolkits site. However
it appears that the password is being ignored. As long as a valid sAMAccountName
is entered then you are in - whatever password you use.</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">There is
also an issue with the length of the user name accepted in the login box, as the
current settings are to small. I think this has already been raised by someone
else.</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Any
thoughts would be most appreciated.</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Kind
regards</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Arial','sans-serif'">Johnathan</SPAN><o:p></o:p></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P></DIV>
<P style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Johnathan Kemp<BR>IT
Dev. Manager<BR>Connexions Staffordshire<BR></SPAN><A
href="http://www.cxstaffs.co.uk/"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">www.cxstaffs.co.uk</SPAN></A><BR><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">01785
355714</SPAN><o:p></o:p></P>
<P style="MARGIN-LEFT: 108pt"> <o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"> <o:p></o:p></P></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><o:p> </o:p></P>
<DIV style="MARGIN-LEFT: 36pt">
<DIV style="MARGIN-LEFT: 36pt">
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center"
align=center><SPAN lang=EN-US>
<HR align=center width="100%" SIZE=2>
</SPAN></DIV></DIV></DIV>
<P class=MsoNormal
style="MARGIN-BOTTOM: 12pt; MARGIN-LEFT: 108pt; MARGIN-RIGHT: 0cm; mso-margin-top-alt: 0cm"><B><SPAN
lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Patrick
Lockley<BR><B>Sent:</B> 19 May 2009 13:29<BR><B>To:</B> Xerte discussion
list<BR><B>Subject:</B> RE: [Xerte] Configuration of LDAP authentication
andthelogin_library.php file</SPAN><SPAN lang=EN-US><o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Hello<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Ignore
the installer on that front. I need to change a line.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">You
need to separate the hosts with $$$ as the delimiter.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">As a
caveat this is new territory for an install. We’ve done a proof of concept using
two LDAP strings here, but never three. It should be scalable, but there is also
the situation at present that certain features (peer review, lockfile emails
when a shared template editor window closes) are not guaranteed to work (early
assumptions in the code limit it).<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I have
been debating whether or not to store an email in the logindetails table – but
this requires altering that table and I am a bit reluctant to do this before we
release version 1.5. It is an omission on my part, but it’s one of those
problems when developing open source is how to keep the system relatively
stable.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">If you
have a PHP developer person I would suspect these modifications would take under
an hour or so to make (I could tell you precisely what to change). But you would
have a slightly custom install for a few files (index.php,
website_code/php/peer/peer_review.php and
website_code/php/versioncontrol/template_close.php) and a slightly different
login_details table.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">So for
the LDAP<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I
would do <o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Host1$$$Host2$$$Host3
for hosts<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Port1$$$Port2$$$Port3
for ports<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">And so
on for each variable for the LDAP settings (bind dn, basedn,
password).<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Reiterating
my lack of LDAP knowledge – I don’t understand this to any great level –
</SPAN><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">sAMAccountName –
appears to be a good default academic value for searching. The case sensitivity
issues has occurred before with one install. </SPAN><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Maybe
I could resolve this with a PHP string function of some
nature.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I’ve
had two people feedback on LDAP so far (hence number of login_library bug fixes)
but I am not sure how best to proceed. I have been mulling over making a post
installer test suite – including an LDAP page to help people work out why their
settings don’t like the code. We also have the issue that we can’t predict how
IT literate people installing the code are. I think the installer does a pretty
good job at the moment, though I could see scope for it providing more support –
but these things all take time. It’s also very likely a lot of people installing
the code won’t care for LDAP as they’ll be authenticating to something
else.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I am
not aware of what the LDAP filters do, but the code needs them and they are used
in the LDAP filter function, so I called them LDAP filter 1 and LDAP filter 2.
Not the most original or informative, but again, I plead ignorance on this
front. <o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I
could see a case that the LDAP function “learns”, or maybe just uses an if not
statement on the givenName attribute. My worry would be how many “given names”
are there – what do our non-English (apologies for taxonomy) LDAP usernames
appear as? <o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I
don’t think you’ve misunderstood anything either – we are just at the very edge
of the code here and I am grateful for your feedback.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">I hope
this helps.<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'">Pat<o:p></o:p></SPAN></P>
<P class=MsoNormal style="MARGIN-LEFT: 108pt"><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: 'Verdana','sans-serif'"><o:p> </o:p></SPAN></P>
<DIV>
<DIV
style="BORDER-RIGHT: medium none; PADDING-RIGHT: 0cm; BORDER-TOP: #b5c4df 1pt solid; PADDING-LEFT: 0cm; PADDING-BOTTOM: 0cm; BORDER-LEFT: medium none; PADDING-TOP: 3pt; BORDER-BOTTOM: medium none">
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><B><SPAN lang=EN-US
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">From:</SPAN></B><SPAN
lang=EN-US style="FONT-SIZE: 10pt; FONT-FAMILY: 'Tahoma','sans-serif'">
xerte-bounces@lists.nottingham.ac.uk
[mailto:xerte-bounces@lists.nottingham.ac.uk] <B>On Behalf Of </B>Johnathan
Kemp<BR><B>Sent:</B> 19 May 2009 12:55<BR><B>To:</B>
xerte@lists.nottingham.ac.uk<BR><B>Subject:</B> [Xerte] Configuration of LDAP
authentication and thelogin_library.php file<o:p></o:p></SPAN></P></DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><o:p> </o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Hello Xerte
Team,</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">I now have a Xerte
On-line Toolkits site that I can log on to using LDAP, but I had some fun
getting it set up and would like to clarify a couple of
things.</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">In the site setup I
have set up a single ldap host, however I would like to have three, would the
correct syntax be</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">999.999.999.999\n999.999.999.999\n999.999.999.999
</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">for this, using the
\n as a separator of the IP addresses, rather than a ";"
?</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Is it possible to
specify more than one ldap base and if so would it be correct to use "\n" as the
separator between bases?</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Is there somewhere in
the setup that is intended to specify the LDAP field that will be used in the
login process, so that when a username is entered in the login form it is
matched to the correct LDAP field when checking the user name and password
against LDAP? I set "The first LDAP filter is" box to sAMAccountName but found
that the login_library.php file was using the "dn" field to match against. It
was only after working my way back through the Xerte code that I found out why I
could not log on. I had to edit lines 48 and 171 of login_library.php to use
sAMAccountName rather than dn. Similarly lines 8 and 131 refer to "givenname"
whereas our LDAP field is "givenName" so I had to edit these as
well.</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">I have to admit I am
not sure what your intended use is for the fields in the set up "The first LDAP
filter" and "The second LDAP filter".</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">How practical would
it be to include in the LDAP set up fields for the LDAP values that will
be</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">a) matched to the
user id entered at login</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">b) used to gather the
user first name</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">c) used to gather the
user last name</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">So that discrepancies
between different systems can be accommodated without the need to edit
code?</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Or have I
misunderstood something?</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Kind
regards</SPAN><o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Johnathan</SPAN><o:p></o:p></P></DIV>
<P style="MARGIN-LEFT: 144pt"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">Johnathan Kemp<BR>IT
Dev. Manager<BR>Connexions Staffordshire<BR></SPAN><A
href="http://www.cxstaffs.co.uk/"><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">www.cxstaffs.co.uk</SPAN></A><BR><SPAN
style="FONT-SIZE: 10pt; FONT-FAMILY: 'Arial','sans-serif'">01785
355714</SPAN><o:p></o:p></P>
<P style="MARGIN-LEFT: 144pt"> <o:p></o:p></P>
<DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt"> <o:p></o:p></P></DIV>
<DIV>
<DIV style="MARGIN-LEFT: 36pt">
<DIV style="MARGIN-LEFT: 36pt">
<DIV style="MARGIN-LEFT: 36pt">
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center" align=center>
<HR align=center width="100%" SIZE=2>
</DIV></DIV></DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 144pt">This email and any files
transmitted with it are confidential and are intended solely for the use of the
individual(s) or entity(s) to whom they are addressed. All messages are
monitored for virus, high risk files and inappropriate content. As a result
users should be aware that this mail maybe accessed, read and the right is
reserved to reject, return, remove attachments or delete if considered to be
inappropriate or unsuitable. Liability cannot be accepted for any loss or damage
arising from this email (or any attachments) or from scripts or any virus
transmitted. This communication represents the originator's personal views and
opinions, which do not necessarily reflect those of Connexions Staffordshire. If
you are not the original recipient or the person responsible for delivering the
email to the intended recipient, be advised that you have received this email in
error, and that any use, dissemination, forwarding, printing, or copying of this
email is strictly prohibited. If you received this email in error, please
immediately reply to the sender or notify postmaster@cxstaffs.co.uk Connexions
Staffordshire Limited is registered in England No.4355170 Registered office:
Foregate House, 70 Foregate Street, Stafford, Staffordshire, ST16
2PX<o:p></o:p></P></DIV>
<DIV>
<DIV style="MARGIN-LEFT: 36pt">
<DIV style="MARGIN-LEFT: 36pt">
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center" align=center>
<HR align=center width="100%" SIZE=2>
</DIV></DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 108pt">This email and any files
transmitted with it are confidential and are intended solely for the use of the
individual(s) or entity(s) to whom they are addressed. All messages are
monitored for virus, high risk files and inappropriate content. As a result
users should be aware that this mail maybe accessed, read and the right is
reserved to reject, return, remove attachments or delete if considered to be
inappropriate or unsuitable. Liability cannot be accepted for any loss or damage
arising from this email (or any attachments) or from scripts or any virus
transmitted. This communication represents the originator's personal views and
opinions, which do not necessarily reflect those of Connexions Staffordshire. If
you are not the original recipient or the person responsible for delivering the
email to the intended recipient, be advised that you have received this email in
error, and that any use, dissemination, forwarding, printing, or copying of this
email is strictly prohibited. If you received this email in error, please
immediately reply to the sender or notify postmaster@cxstaffs.co.uk Connexions
Staffordshire Limited is registered in England No.4355170 Registered office:
Foregate House, 70 Foregate Street, Stafford, Staffordshire, ST16
2PX<o:p></o:p></P></DIV>
<DIV>
<DIV style="MARGIN-LEFT: 36pt">
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center" align=center>
<HR align=center width="100%" SIZE=2>
</DIV></DIV>
<P class=MsoNormal style="MARGIN-LEFT: 72pt">This email and any files
transmitted with it are confidential and are intended solely for the use of the
individual(s) or entity(s) to whom they are addressed. All messages are
monitored for virus, high risk files and inappropriate content. As a result
users should be aware that this mail maybe accessed, read and the right is
reserved to reject, return, remove attachments or delete if considered to be
inappropriate or unsuitable. Liability cannot be accepted for any loss or damage
arising from this email (or any attachments) or from scripts or any virus
transmitted. This communication represents the originator's personal views and
opinions, which do not necessarily reflect those of Connexions Staffordshire. If
you are not the original recipient or the person responsible for delivering the
email to the intended recipient, be advised that you have received this email in
error, and that any use, dissemination, forwarding, printing, or copying of this
email is strictly prohibited. If you received this email in error, please
immediately reply to the sender or notify postmaster@cxstaffs.co.uk Connexions
Staffordshire Limited is registered in England No.4355170 Registered office:
Foregate House, 70 Foregate Street, Stafford, Staffordshire, ST16
2PX<o:p></o:p></P></DIV>
<DIV>
<DIV class=MsoNormal style="MARGIN-LEFT: 36pt; TEXT-ALIGN: center" align=center>
<HR align=center width="100%" SIZE=2>
</DIV>
<P class=MsoNormal style="MARGIN-LEFT: 36pt">This email and any files
transmitted with it are confidential and are intended solely for the use of the
individual(s) or entity(s) to whom they are addressed. All messages are
monitored for virus, high risk files and inappropriate content. As a result
users should be aware that this mail maybe accessed, read and the right is
reserved to reject, return, remove attachments or delete if considered to be
inappropriate or unsuitable. Liability cannot be accepted for any loss or damage
arising from this email (or any attachments) or from scripts or any virus
transmitted. This communication represents the originator's personal views and
opinions, which do not necessarily reflect those of Connexions Staffordshire. If
you are not the original recipient or the person responsible for delivering the
email to the intended recipient, be advised that you have received this email in
error, and that any use, dissemination, forwarding, printing, or copying of this
email is strictly prohibited. If you received this email in error, please
immediately reply to the sender or notify postmaster@cxstaffs.co.uk Connexions
Staffordshire Limited is registered in England No.4355170 Registered office:
Foregate House, 70 Foregate Street, Stafford, Staffordshire, ST16
2PX<o:p></o:p></P></DIV></DIV><div align=\"center\" style=\"font-family:verdana; font-size:10px;\"><hr width=\"100%\">This email and any files transmitted with it are confidential and are intended solely for the use of the individual(s) or entity(s) to whom they are addressed. All messages are monitored for virus, high risk files and inappropriate content. As a result users should be aware that this mail maybe accessed, read and the right is reserved to reject, return, remove attachments or delete if considered to be inappropriate or unsuitable. Liability cannot be accepted for any loss or damage arising from this email (or any attachments) or from scripts or any virus transmitted.
This communication represents the originator's personal views and opinions, which do not necessarily reflect those of Connexions Staffordshire. If you are not the original recipient or the person responsible for delivering the email to the intended recipient, be advised that you have received this email in error, and that any use, dissemination, forwarding, printing, or copying of this email is strictly prohibited. If you received this email in error, please immediately reply to the sender or notify postmaster@cxstaffs.co.uk
Connexions Staffordshire Limited is registered in England No.4355170
Registered office: Foregate House, 70 Foregate Street, Stafford, Staffordshire, ST16 2PX</div></body></HTML>