Subject: The mailing list for listmasters using Sympa
List archive
Re: [sympa-users] LDAP authentication "bugfix" in 6.1
- From: David Verdin <address@concealed>
- To: address@concealed
- Subject: Re: [sympa-users] LDAP authentication "bugfix" in 6.1
- Date: Mon, 15 Nov 2010 11:28:19 +0100
|
Dear all, This problem has been fixed, along with other previously reported problems, in the - just tagged - newest version of Sympa 6.1 : The 6.1.3. You can download it here: http://www.sympa.org/distribution/sympa-6.1.3.tar.gz You can also check the release notes for more details on the 6.1.3: http://www.sympa.org/distribution/latest-stable/NEWS Thanks for using Sympa and help us improve it! Regards, The Sympa authors Le 08/11/2010 16:22, Niklas Matthies a écrit : address@concealed">The "bugfix"[1] from Revision 6168 breaks our use case. Our users have two email addresses, a long one (e.g. address@concealed) and a short one (e.g. address@concealed, effectively an alias). While everyone uses the short address when typing their (or other people's) email address somewhere, the long one is actually the canonical address, in particular it is the address automatically inserted into the From header field when users send mail going outside of MS Exchange. For this reason the long email address is the one to be used when subscribing to a Sympa mailing list. Subscribing with the short email address wouldn't work for posting to a non-public list because the messages always appear to come from the long email address wouldn't be matched up with the subscription. We use the LDAP lookup to canonicalize the login to the long (= canonical) email address so that users login to the same account regardless of which email address they enter. (In our auth.conf we have: get_dn_by_email_filter (|(mail=[sender])(userPrincipalName=[sender])) email_attribute mail Here "mail" is the long email address while "userPrincipalName" is the short email address.) The "bugfix" causes this canonicalization to not work anymore. Users are now logged in to different accounts depending on whether they enter their long email address or the short alias address. I guess this is something that should be configurable in Sympa. (At least until there is true support for Sympa accounts to have multiple email addresses.) -- Niklas Matthies [1] [bug][Submitted by M. Warkus, univ. Marburg] When a user logged in, using LDAP, by providing an email address, if this email was not the first one in the LDAP email attribute, then the uiser was not logged with the address she provided but with the default address found in the LDAP directory. Now, if an email is provided and the login is successful ,the user is logged in with the email she provided. --
David Verdin Comité réseau des universités Due to the limitations of human brain, I fail to remember all the mails. So if you want your bug reports or feature requests for Sympa to be processed, please post them to the Sympa tracker |
-
[sympa-users] Sympa-generated Sender header,
Niklas Matthies, 11/05/2010
-
Re: [sympa-users] Sympa-generated Sender header,
Niklas Matthies, 11/05/2010
- Re: [sympa-users] Sympa-generated Sender header, Serge Aumont, 11/05/2010
-
[sympa-users] LDAP authentication "bugfix" in 6.1,
Niklas Matthies, 11/08/2010
- Re: [sympa-users] LDAP authentication "bugfix" in 6.1, David Verdin, 11/15/2010
-
Re: [sympa-users] Sympa-generated Sender header,
Niklas Matthies, 11/05/2010
Archive powered by MHonArc 2.6.19+.