Skip to Content.
Sympa Menu

en - Re: [sympa-users] LDAP Alternate Email authentication

Subject: The mailing list for listmasters using Sympa

List archive

Re: [sympa-users] LDAP Alternate Email authentication

Chronological Thread  
    < Chronological >       < Thread >
  • From: Amos <address@concealed>
  • To: address@concealed
  • Cc: address@concealed
  • Subject: Re: [sympa-users] LDAP Alternate Email authentication
  • Date: Wed, 29 Jul 2015 11:31:43 -0500
So, unless I'm mistaken, there's no change in this regard, and unlikely to be any.  Right?

We have a bit of a mess with both the account address (derived from auto-generated account name) and the personalized address that people can request.  It's to the point that I'm thinking of totally dropping support for the personalized address and just using the ugly account address.  Then have Postfix on that box replace all occurrences of the personalized address with the account address, sort of a reverse masquerading.  

Unfortunately, that means I'll also need to sanitize the db to replace all occurrences of the personalized address with the account address.  Any tips on how to proceed with this?


On Mon, Sep 6, 2010 at 4:16 AM, <address@concealed> wrote:
We are using LDAP to authenticate our users - listmasters, owners & ordinary
list memebers.

Looking at the manual http://www.sympa.org/manual_6.0/authentication  - we are
running Sympa 6.0.3 - it implies we should be able to use uid, primary email
address or alternate and get the same result.

Our experience is that alternate email address logs in as that and just shows
lists related to the alternate email address.

Uid and primary email address just show lists related to the primary email
address.

While we have attempted to normalise all email addresses in Symap to be the
primary, it is hard to avoid the occaisonal use of the alternate and to stop
people logging in as alternate email address.

Is it possible to get primary and alternate to be regarded as equivalent?

Here is my LDAP paragraph from auth.conf with host redacted:

# Brunel LDAP defined here
ldap
        host                            ahost.brunel.ac.uk:389
        timeout                         20
        suffix                          ou=people,dc=nis,dc=brunel,dc=ac,dc=uk
        get_dn_by_uid_filter            (uid=[sender])
        get_dn_by_email_filter          (|(mail=[sender])
(brunelMailAcceptAddres
s=[sender]))
        email_attribute                 mail
        alternative_email_attribute     brunelMailAcceptAddress
        scope                           sub

Thanks,

Peter Polkinghorne


  • Re: [sympa-users] LDAP Alternate Email authentication, Amos, 07/29/2015

Archive powered by MHonArc 2.6.19+.

Top of Page