[prev in list] [next in list] [prev in thread] [next in thread]
List: owncloud
Subject: Re: [Owncloud] Simpler LDAP auth
From: Wogan May <wogan.may () gmail ! com>
Date: 2012-01-27 9:44:00
Message-ID: CAHnTkUtS4V-Q-tcQrqQN04A-EQz5pXcbmozH7peMXno_guaXog () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Hi Frank,
That might be a good idea, actually :) I'll see if I can get it uploaded a
little later today.
Maybe I should have introduced myself a little first - Hi, my name is
Wogan, I'm from South Africa, with a few years PHP & MySQL experience, and
I'm a senior developer at Acceleration eMarketing. We're using ownCloud in
an enterprise context - our users have network shares mounted as drives,
and I'm working to expose a web-based version of that. So I'll be doing a
lot in terms of automated smbmounts, AD auth integration and branding.
Regards,
*Wogan May*
*Digital Polymath*
[ about.me <http://about.me/wogan> |
google+<https://plus.google.com/110555803212391859805>]
On Fri, Jan 27, 2012 at 11:35 AM, Frank Karlitschek <karlitschek@kde.org>wrote:
> Hi Wogan,
>
> thats awesome.
>
> We have to rework the ldap integration anyways for the next version.
>
> You can put your work into the "apps" repository so that others can try it
> and contribute.
> https://gitorious.org/owncloud/apps
>
> What do you think?
>
> Cheers
> Frank
>
>
>
>
> On 27.01.2012, at 09:33, Wogan May wrote:
>
> > After pulling my hair out trying to get the default LDAP auth plugin
> configured, I went ahead and wrote a simpler replacement. All it does is
> clean up the username, and attempt to bind to AD with the credentials
> provided at login.
> >
> > It doesn't check to see if the user exists (according to our policy
> that's a minor security risk, since a bot can use that to determine valid
> usernames), and will simply return true if the user & password matches
> perfectly.
> >
> > The plugin could be made even more efficient, I'm sure.
> >
> > http://pastie.org/3261915
> >
> > Regards,
> > Wogan May
> > Digital Polymath
> >
> > [ about.me | google+ ]
> >
> > _______________________________________________
> > Owncloud mailing list
> > Owncloud@kde.org
> > https://mail.kde.org/mailman/listinfo/owncloud
>
> Frank Karlitschek
> karlitschek@kde.org
>
>
>
[Attachment #5 (text/html)]
Hi Frank,<div><br></div><div>That might be a good idea, actually :) I'll see if I \
can get it uploaded a little later today.</div><div><br></div><div>Maybe I should \
have introduced myself a little first - Hi, my name is Wogan, I'm from South \
Africa, with a few years PHP & MySQL experience, and I'm a senior developer \
at Acceleration eMarketing. We're using ownCloud in an enterprise context - our \
users have network shares mounted as drives, and I'm working to expose a \
web-based version of that. So I'll be doing a lot in terms of automated \
smbmounts, AD auth integration and branding.<br clear="all"> <br \
clear="all">Regards,<div><b>Wogan May</b></div><div><i><font color="#c0c0c0">Digital \
Polymath</font></i></div><div><br></div><div>[ <a href="http://about.me/wogan" \
target="_blank">about.me</a> | <a \
href="https://plus.google.com/110555803212391859805" target="_blank">google+</a> \
]</div> <br>
<br><br><div class="gmail_quote">On Fri, Jan 27, 2012 at 11:35 AM, Frank Karlitschek \
<span dir="ltr"><<a \
href="mailto:karlitschek@kde.org">karlitschek@kde.org</a>></span> \
wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px \
#ccc solid;padding-left:1ex"> Hi Wogan,<br>
<br>
thats awesome.<br>
<br>
We have to rework the ldap integration anyways for the next version.<br>
<br>
You can put your work into the "apps" repository so that others can try it \
and contribute.<br> <a href="https://gitorious.org/owncloud/apps" \
target="_blank">https://gitorious.org/owncloud/apps</a><br> <br>
What do you think?<br>
<br>
Cheers<br>
Frank<br>
<div><div class="h5"><br>
<br>
<br>
<br>
On 27.01.2012, at 09:33, Wogan May wrote:<br>
<br>
> After pulling my hair out trying to get the default LDAP auth plugin configured, \
I went ahead and wrote a simpler replacement. All it does is clean up the username, \
and attempt to bind to AD with the credentials provided at login.<br>
><br>
> It doesn't check to see if the user exists (according to our policy \
that's a minor security risk, since a bot can use that to determine valid \
usernames), and will simply return true if the user & password matches \
perfectly.<br>
><br>
> The plugin could be made even more efficient, I'm sure.<br>
><br>
> <a href="http://pastie.org/3261915" \
target="_blank">http://pastie.org/3261915</a><br> ><br>
> Regards,<br>
> Wogan May<br>
> Digital Polymath<br>
><br>
> [ <a href="http://about.me" target="_blank">about.me</a> | google+ ]<br>
><br>
</div></div>> _______________________________________________<br>
> Owncloud mailing list<br>
> <a href="mailto:Owncloud@kde.org">Owncloud@kde.org</a><br>
> <a href="https://mail.kde.org/mailman/listinfo/owncloud" \
target="_blank">https://mail.kde.org/mailman/listinfo/owncloud</a><br> <span \
class="HOEnZb"><font color="#888888"><br> Frank Karlitschek<br>
<a href="mailto:karlitschek@kde.org">karlitschek@kde.org</a><br>
<br>
<br>
</font></span></blockquote></div><br></div>
_______________________________________________
Owncloud mailing list
Owncloud@kde.org
https://mail.kde.org/mailman/listinfo/owncloud
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic