[
http://jira.xwiki.org/jira/browse/XWIKI-1079?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#action_22269
]
Vincent Massol commented on XWIKI-1079:
---------------------------------------
Hi Jimmy,
I've got some good news for you. Thomas Mortagne is working on implementing
LDAP groups for XWiki and on applying this patch. It should be ready for
version 1.3M2 (i.e. for the 15th of February).
I'm pretty sure Thomas would love to get your help for testing what he's coding
right now and as soon as he's got something working. We're all pretty new to
LDAP here so the more testers the better.
Thanks for the offer.
-Vincent
> LDAP Authentication
> -------------------
>
> Key: XWIKI-1079
> URL: http://jira.xwiki.org/jira/browse/XWIKI-1079
> Project: XWiki Platform
> Issue Type: Improvement
> Components: Admin, Authentication and Rights Management, Plugin -
> Other, Wiki features
> Affects Versions: 1.0 B6
> Reporter: Gunter Leeb
> Assigned To: Sergiu Dumitriu
> Fix For: 1.3 M2
>
> Attachments: ldap.zip, LDAPAuthenticater.class,
> LDAPAuthenticater.java, LDAPAuthenticater.java, LDAPAuthenticater.java,
> ssl.zip, XWiki.zip
>
>
> I have finished the implementation of a substitude LDAP authentication class.
> The new features and changes:
> - Separate LDAP login and authentication validation
> - An LDAP group membership is first checked before a user can be
> authenticated against LDAP
> - LDAP Groups are handled recursivly (groups in groups)
> - LDAP Groups and their members are cached with an expiration
> - LDAP attributes can update XWiki user attributes configurable at create
> time or on every login
> - LDAP group membership can be sync'ed with XWiki group membership
> - If authentication with LDAP fails it still will try to authenticate against
> the XWiki DB
> - detailed comments in xwiki.cfg
> - pretty much every detail of the behavior can be configured in xwiki.cfg
> - as far as I can see, all valuable features from the old LDAPAuthServiceImpl
> are reimplemented (except for LDAP bind being sufficent for login implemented
> by the check_level configuration)
> - I have tried to implement all the feature requests about LDAP that I have
> heard about
> - any LDAP attribute can be used containing the XWiki name
> Known Issues:
> - joining an XWiki group or removing someone from a group does not appear to
> work correctly
> - creating a user appears incomplete to me
> I tested against OpenLDAP and Novell eDirectory.
> I would like to ask for a code-read, verification of how the module is using
> the XWiki APIs and testing in various environments.
> Most of all, I am looking for feedback.
> This is not a final version!
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.xwiki.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
notifications mailing list
notifications@xwiki.org
http://lists.xwiki.org/mailman/listinfo/notifications
