james-server-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Robert Munn (JIRA)" <server-...@james.apache.org>
Subject [jira] [Created] (JAMES-1569) LDAP group authentication filter to authenticate users by LDAP group
Date Thu, 05 Mar 2015 09:29:38 GMT
Robert Munn created JAMES-1569:
----------------------------------

             Summary: LDAP group authentication filter to authenticate users by LDAP group
                 Key: JAMES-1569
                 URL: https://issues.apache.org/jira/browse/JAMES-1569
             Project: James Server
          Issue Type: Improvement
    Affects Versions: 3.0.0-beta5
         Environment: issue is not platform dependent.
            Reporter: Robert Munn
            Priority: Minor
             Fix For: 3.0.0-beta5, 3.0-beta4


I created a small filter in the LDAP authentication system to allow user authentication to
be filtered by additional criteria in a filter attribute of the repository in the xml config.



<repository name="LocalUsers" class="org.apache.james.user.ldap.ReadOnlyUsersLDAPRepository"
ldapHost="<host>" principal="<authuser>" credentials="<password>" userBase="<ou>"
userObjectClass="<object class, e.g. inetOrgPerson>" userIdAttribute="<userid attribute
name, e.g. cn>" filter="(<filter>)">

example:

<repository name="LocalUsers" class="org.apache.james.user.ldap.ReadOnlyUsersLDAPRepository"
ldapHost="ldaps://mail.domain.com:636" principal="cn=admin,dc=domain,dc=com" credentials="password"
userBase="ou=people,dc=domain,dc=com" userObjectClass="inetOrgPerson" userIdAttribute="cn"
filter="(memberOf=CN=EmailUsers,ou=groups,DC=domain,DC=com)">





--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org


Mime
View raw message