ldap authentication is working without errors but assigning permissions to ldap groups have no effect in dokuwiki.
My example:
I'm having wikieditor group in ldap tree with several users as members:
version: 1
# LDIF Export for: cn=wikieditor,ou=Groups,dc=active,dc=ee
# Generated by phpLDAPadmin (
http://phpldapadmin.sourceforge.net/ ) on July 7, 2005 4:10 pm
# Server: ActiveTux (127.0.0.1)
# Search Scope: base
# Search Filter: (objectClass=*)
# Total Entries: 1
# Entry 1: cn=wikieditor,ou=Groups,dc=active,dc=ee
dn: cn=wikieditor,ou=Groups,dc=active,dc=ee
objectClass: posixGroup
objectClass: sambaGroupMapping
cn: wikieditor
gidNumber: 1001
sambaSID: S-1-5-21-530076877-4031960640-1585896771-3003
sambaGroupType: 2
displayName: wikieditor
memberUid: toomas
memberUid: tiina
memberUid: mart
In local.php config file I have:
$conf['useacl'] = 1; //Use Access Control Lists to restrict access?
$conf['openregister'] = 0; // users are allowed to register themselves (default)
$conf['superuser'] = 'admin'; // admin is superuser
$conf['authtype'] = 'ldap';
$conf['auth']['ldap']['server'] = '127.0.0.1';
$conf['auth']['ldap']['usertree'] = 'ou=Users, dc=active, dc=ee';
$conf['auth']['ldap']['grouptree'] = 'ou=Groups, dc=active, dc=ee';
$conf['auth']['ldap']['userfilter'] = '(&(uid=%{user})(objectClass=posixAccount))';
$conf['auth']['ldap']['groupfilter'] = '(&(objectClass=posixGroup)(memberUid=%{user}))';
$conf['auth']['ldap']['version'] = 3;
$conf['auth']['ldap']['debug'] = true;
In acl.auth.php I have:
start @ALL 1
* @wikieditor 16
stuff_pages @wikieditor 2
But members of wikieditor groups are treated like @ALL - having read only right