Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-2294

xwiki group mapping with ldap is not working.

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • Major
    • None
    • None
    • None
    • None
    • tomcat , hsqldb

    Description

      i have created a group called XWiki.abcGroup and changed the .cfg file with the needed but its not working.I am sure with my ldap configuration in .cfg file .
      plese help.
      I am using XWiki 1.3

          1. new LDAP authentication service

      xwiki.authentication.authclass=com.xpn.xwiki.ldap.authentication.LDAPAuthenticater

          1. Turn LDAP authentication on - otherwise only XWiki authentication
          2. 0: disable
          3. 1: enable

      xwiki.authentication.ldap=1

          1. LDAP Server (Active Directory, eDirectory, OpenLDAP, etc.)

      xwiki.authentication.ldap.server=192.168.15.20
      xwiki.authentication.ldap.port=666

          1. LDAP login, empty = anonymous access, otherwise specify full dn
          1. {0}

            is replaced with the username,

            {1}

            with the password
            xwiki.authentication.ldap.bind_DN=cn=directory manager,dc=edifixio,dc=co,dc=in
            xwiki.authentication.ldap.bind_pass=edifixio

          1. Force to check password after LDAP connection
          2. 0: disable
          3. 1: enable
            xwiki.authentication.ldap.validate_password=0
          1. only members of the following group will be verified in the LDAP
      1. otherwise only users that are found after searching starting from the base_DN

      #xwiki.authentication.ldap.user_group=cn=developers,ou=groups,o=MegaNova,c=US

          1. base DN for searches

      xwiki.authentication.ldap.base_DN=ou=people,dc=kolkata,dc=edifixio,dc=co,dc=in

          1. specifies the LDAP attribute containing the identifier to be used as the XWiki name (default=cn)

      xwiki.authentication.ldap.UID_attr=uid

          1. retrieve the following fields from LDAP and store them in the XWiki user object (xwiki-attribute=ldap-attribute)
          2. ldap_dn=dn – dn is set by class, caches dn in XWiki.user object for faster access

      xwiki.authentication.ldap.fields_mapping=name=uid,last_name=sn,first_name=givenName,fullname=givenName,email=mail,ldap_dn=dn

          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          2. on every login update the mapped attributes from LDAP to XWiki otherwise this happens only once when the XWiki account is created.

      xwiki.authentication.ldap.update_user=1

          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          2. mapps XWiki groups to LDAP groups, separator is "|"
      1. xwiki.authentication.ldap.group_mapping_1=XWiki.XWikiEdifixioGroup=cn=AdminRole,ou=groups,o=MegaNova,c=US|\
      2. XWiki.Organisation=cn=testers,ou=groups,o=MegaNova,c=US

      xwiki.authentication.ldap.group_mapping_1=XWiki.XWikiEdifixioGroup=cn=Developer,ou=roles,dc=kolkata,dc=edifixio,dc=co,dc=in
      xwiki.authentication.ldap.group_mapping_2=XWiki.XWikiAdminGroup=cn=HR Manager,ou=roles,dc=kolkata,dc=edifixio,dc=co,dc=in
      #|XWiki.Edifixio=cn=HR Manager,ou=roles,dc=kolkata,dc=edifixio,dc=co,dc=in

          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          2. time in s after which the list of members in a group is refreshed from LDAP (default=3600*6)

      xwiki.authentication.ldap.groupcache_expiration=21800

          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          1. - create : synchronize group membership only when the user is first created
          2. - always: synchronize on every login

      xwiki.authentication.ldap.mode_group_sync=always

          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          2. if ldap authentication fails for any reason, try XWiki DB authentication with the same credentials

      xwiki.authentication.ldap.trylocal=1

          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          2. SSL connection to LDAP server
          3. 0: normal
          4. 1: SSL
      2. xwiki.authentication.ldap.ssl=0
          1. [SINCE 1.3M2, XWikiLDAPAuthServiceImpl]
          2. The keystore file to use in SSL connection
      2. xwiki.authentication.ldap.ssl.keystore=

      #-------------------------------------------------------------------------------------

      xwiki.authentication.unauthorized_code=200

      1. This parameter will activate the sectional editing
        xwiki.section.edit=1
      1. Uncomment if you want to ignore requests for unmapped actions, and simply display the document
      2. xwiki.unknownActionResponse=view
      1. You can configure the toolbars you wish to see in the WYSIWYG editor by defining the
      2. xwiki.wysiwyg.toolbars property.
      3. When not defined it defaults to:
      4. xwiki.wysiwyg.toolbars=texttoolbar, listtoolbar, indenttoolbar, undotoolbar, titletoolbar, \
      5. styletoolbar, horizontaltoolbar, attachmenttoolbar, macrostoolbar, \
      6. tabletoolbar, tablerowtoolbar, tablecoltoolbar, linktoolbar
      7. The full list of toolbars includes the one defined above and the following ones:
      8. subtoolbar, findtoolbar, symboltoolbar

      xwiki.defaultskin=toucan
      xwiki.defaultbaseskin=albatross

      please help on that context

      Attachments

        Activity

          People

            tmortagne Thomas Mortagne
            bappamajumder Bappa Majumder
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: