Subject: Developers of Sympa
List archive
[sympa-dev] Need to add authenticated bind to sub is_ldap_user in wwsympa.fcgi
- From: "Chris Andrews" <address@concealed>
- To: "address@concealed" <address@concealed>
- Subject: [sympa-dev] Need to add authenticated bind to sub is_ldap_user in wwsympa.fcgi
- Date: Mon, 14 May 2007 14:28:41 -0400
Only the Sympa user we setup can see the LDAP attributes (mailprimary and
mailalternate) to hold users email attributes. When a user goes in and
requests their password Sympa does a LDAP lookup to see if they are in the
LDAP to see if it should send the password on file or redirect the user to
the LDAP missing password page. The do_sendpasswd is responsible for this.
do_sendpasswd calls is_ldap_user to see if the users is an LDAP user.
is_ldap_user only does an anonymous bind and so it will never find the email
addresses it is doing its searches on. So two things need to be changed:
The LDAP bind in is_ldap_user should use the credentials that are configured
in the auth.conf file.
do_sendpasswd should not even do the LDAP look up - it should send users to
the URL configured in auth.conf based on the email address matching the
regex in the auth.conf.
---
Chris Andrews
Boston College
Collaboration Team
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
- [sympa-dev] Need to add authenticated bind to sub is_ldap_user in wwsympa.fcgi, Chris Andrews, 05/14/2007
Archive powered by MHonArc 2.6.19+.