Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-1079

LDAP Authentication

    XMLWordPrintable

Details

    • LDAP patch
    • Unit, Integration

    Description

      Implementation of a substitude LDAP authentication class.

      The new features and changes:

      • Separate LDAP login and authentication validation
      • An LDAP group membership is first checked before a user can be authenticated against LDAP
      • LDAP Groups are handled recursivly (groups in groups)
      • LDAP Groups and their members are cached with an expiration
      • LDAP attributes can update XWiki user attributes configurable at create time or on every login
      • LDAP group membership can be sync'ed with XWiki group membership
      • If authentication with LDAP fails it still will try to authenticate against the XWiki DB
      • detailed comments in xwiki.cfg
      • pretty much every detail of the behavior can be configured in xwiki.cfg
      • All valuable features from the old LDAPAuthServiceImpl are reimplemented (except for LDAP bind being sufficent for login implemented by the check_level configuration)
      • Any LDAP attribute can be used containing the XWiki name
      • Added SSL support
      • Each virtual server can have it's own LDAP configuration even enable disable LDAP

      This has been tested against OpenLDAP, Novell eDirectory and ApacheDS.

      I would like to ask for a code-read, verification of how the module is using the XWiki APIs and testing in various environments.
      Most of all, I am looking for feedback.

      Attachments

        1. XWiki.zip
          56 kB
        2. ssl.zip
          27 kB
        3. new_ldap_auth.patch
          47 kB
        4. LDAPAuthenticater.java
          38 kB
        5. LDAPAuthenticater.java
          47 kB
        6. LDAPAuthenticater.java
          47 kB
        7. LDAPAuthenticater.class
          23 kB
        8. ldap.zip
          27 kB
        9. 20080212-new_ldap_auth.zip
          1.37 MB
        10. 20080211-new_ldap_auth.patch
          83 kB
        11. 20080208-new_ldap_auth.patch
          54 kB
        12. 20080207-new_ldap_auth.patch
          51 kB

        Issue Links

          Activity

            People

              tmortagne Thomas Mortagne
              gleeb Gunter Leeb
              Votes:
              5 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: