[TYPO3-dev] Fwd: ldap server / sync with staticgroups
Alex Masidlover
alex at axiomtech.co.uk
Wed Jul 30 11:58:10 CEST 2008
Hi,
I'm trying to get LDAP authentication to work against Typo3 and have
the frontend users syncing and authentication working if I manually
set the user groups for each user. Because OpenLDAP does not support
memberOf (at least not without upgrading to 2.4 and adding an overlay)
I need to use static groups where the users' uids are held in
memberUid attributes of the group object.
It looks like this has been coded for with getStaticGroups, and I have
found an example of configuring it at:
http://typo3.toaster-schwerin.de/typo3_dev/2005_02/msg00384.html
However, I can't work out what the key options in the configuration do
(searchAttr, groupFilter - is this generic to filter all groups or do
I add a ### variable to only get groups for the user being
considered?, searchAttr, attribute - in the userfunc, attribute of
what? the group uid, the user id...)
When I looked at the code for the function in the class, it seems not
to use any of these conf vars but has a whole different set - are they
being reforumlated somehow or is the sample config post I am looking
at out of date/wrong? I think I roughly see how to configure it from
the code and would think something like:
userFunc = tx_ldapserver->getStaticGroups
userFunc {
pid = <Storage Rec>
table = fe_groups
filter=(&(objectClass=posixGroup)(memberUid=###IDENT###))
}
But I can't see how the conf['value'] is set (which is what IDENT gets
replaced with and should be the user's uid).
Any help would be much appreciated, especially from someone with a
working config...
Thanks in advance,
Alex Masidlover
--
Open Source Specialist
Axiom Tech Limited
W: http://www.axiomtech.co.uk
T: 0845 1270316
Axiom Tech is a Limited Company registered in England and Wales at 92 Didsbury
Road, Stockport, SK4 2JL. Axiom Tech's company number is 5684132, our VAT
registration number is 878 6568 46.
Unless agreed otherwise, all services and products supplied by Axiom Tech are
subject to our standard terms and conditions, available on request.
More information about the TYPO3-dev
mailing list