I have built a site that uses CGI::Application::Plugin::Authentication using
the Authen::Simple::LDAP driver against a Microsoft AD server.
__PACKAGE__->authen->config(
DRIVER => [ 'Authen::Simple::LDAP',
host => 'ldap://xxxx.xxxx.xxxx.com:389',
basedn =>
'ou=Users,ou=NorthAmerica,dc=xxxx,dc=xxxx,dc=xxxx,dc=com',
filter =>
'(&(objectClass=organizationalPerson)(objectClass=user)(sAMAccountName=%s))',
],
STORE => 'Session',
LOGOUT_RUNMODE => 'default',
);
__PACKAGE__->authen->protected_runmodes('2', '4', '5', '7', '8', '9', '11',
'12');
The page authenticates against the AD server fine. I am trying to figure out
how to take it to the next step for Group authorization using
CGI::Application::Plugin::Authorization. Looking at the example in CPAN I
see how it is done using a database but I have not been able to find any
examples using LDAP; checking against the 'memberOf' fields (on
cpan/google/perlmonks/this mailing list archive) .
If anyone has tackled this before and is willing to show some code example
or point me in the right direction I would appreciate it.
Thank You,
Woody
##### CGI::Application community mailing list ################
## ##
## To unsubscribe, or change your message delivery options, ##
## visit: http://www.erlbaum.net/mailman/listinfo/cgiapp ##
## ##
## Web archive: http://www.erlbaum.net/pipermail/cgiapp/ ##
## Wiki: http://cgiapp.erlbaum.net/ ##
## ##
################################################################
