This is a static dump of issues in the old "Flyspray" bugtracker for DokuWiki. Bugs and feature requests
are now tracked at the issue tracker at Github.
Closed
Won't implement
Won't implement
FS#1726 LDAP Auth: retrieve all groups including recursive groups
ACL & Authentication
-
2009-07-02 brainkiller
With the LDAP authentication, it is possible to retrieve first level groups (groups directly assigned to a user). I need to also retrieve groups in groups of a user.
To do this, we can define a recursion key for groups.
I have done it (see attached patch of ldap.class.php file).
It works perfectly with an Active Directory LDAP with the following configuration:
$conf['auth']['ldap']['server'] = 'domain.org';
$conf['auth']['ldap']['binddn'] = 'user@domain.org'; # also work without a static user but needed for email notifications
$conf['auth']['ldap']['bindpw'] = 'PassWord';
$conf['auth']['ldap']['usertree'] = 'dc=domain,dc=org';
$conf['auth']['ldap']['userfilter'] = '(userPrincipalName=%{user}@%{server})';
$conf['auth']['ldap']['mapping']['name'] = 'displayname';
$conf['auth']['ldap']['grouptree'] = 'dc=domain,dc=org';
$conf['auth']['ldap']['group_recursive_key'] = 'memberof';
$conf['auth']['ldap']['referrals'] = '0';
$conf['auth']['ldap']['version'] = '3';
-
2009-07-02 brainkiller
I forgot the version. The used version is "2009-02-14". -
2009-10-04 andi
There's a dedicated ActiveDirectory backend for DokuWiki that supports recursive groups, now. To keep out unnecessary complexity out of the LDAP backend, I will not apply this patch.
