Subject: The mailing list for listmasters using Sympa
List archive
- From: Sylvain Amrani <address@concealed>
- To: Olivier Salaün - CRU <address@concealed>
- Cc: Richard Caldwell <address@concealed>, address@concealed
- Subject: [sympa-users] Re: Re: Permit LDAP only for WWW
- Date: Wed, 15 Nov 2006 08:37:44 +0100
Olivier Salaün - CRU a écrit :
Hi Richard,Will this be sufficient to never prompt for password in a sso-only installation or never prompt for password sending ?
The problem you have reported was due to a missing condition in one of Sympa's web template.
I've fixed it ; you can get the patch here : http://sourcesup.cru.fr/cgi/viewcvs.cgi/sympa/web_tt2/login_menu.tt2?r1=1.11&r2=1.11.2.1&makepatch=1&diff_format=u
A time ago I had to patch wwsympa so do_subscribe(), do_multiple_subscribe(), do_sigrequest() won't use email/password functionality. I continue to apply this patch but I don't know if it is necessary with newer versions of sympa.
(with only one SSO section in auth.conf, unauthenticated subscribe request would result in a login/pw form)
Sylvain.
Thanks for reporting the problem so precisely.
Richard Caldwell wrote:
I would like to restrict my WWW interface to users with LDAP
authentication. I have LDAP authentication working fine, but now I'm
trying to eliminate other login options. I've tried removing the
user_table paragraph from the auth.conf file and also setting a
catch-all negative_regexp for the user_table paragraph with no affect.
When a user enters their email address in "forgot password" field they
are sent a generated password instead of being directed to the
authentication_info_url as I understand they should be.
Can anyone shed light on what I might be doing wrong here? The entries
from my auth.conf file are below. This is on sympa-5.2.3.
Thanks,
Richard
ldap
host ldap.admin.qw.franklin.edu:636
use_ssl 1
timeout 20
suffix dc=franklin,dc=edu
bind_dn cn=sympa,ou=Proxies,dc=franklin,dc=edu
bind_password xxxxxx
get_dn_by_uid_filter (uid=[sender])
get_dn_by_email_filter (mail=[sender])
email_attribute mail
scope sub
authentication_info_url http://email.franklin.edu/ldapinfo.html
regexp .*franklin.edu
user_table
negative_regexp .*
-
[sympa-users] Permit LDAP only for WWW,
Richard Caldwell, 11/08/2006
-
[sympa-users] Re: Permit LDAP only for WWW,
Olivier Salaün - CRU, 11/14/2006
-
[sympa-users] Re: Re: Permit LDAP only for WWW,
Sylvain Amrani, 11/15/2006
-
[sympa-users] Re: Re: Permit LDAP only for WWW,
Olivier Salaün - CRU, 11/15/2006
- [sympa-users] Re: Re: Re: Permit LDAP only for WWW, Sylvain Amrani, 11/15/2006
-
[sympa-users] Re: Re: Permit LDAP only for WWW,
Olivier Salaün - CRU, 11/15/2006
- [sympa-users] Re: Permit LDAP only for WWW, Richard Caldwell, 11/22/2006
-
[sympa-users] Re: Re: Permit LDAP only for WWW,
Sylvain Amrani, 11/15/2006
-
[sympa-users] Re: Permit LDAP only for WWW,
Olivier Salaün - CRU, 11/14/2006
Archive powered by MHonArc 2.6.19+.