authLdap | LDAP-Authentication for WordPress | Content Management System library

 by   heiglandreas PHP Version: 2.5.3 License: MIT

kandi X-RAY | authLdap Summary

kandi X-RAY | authLdap Summary

authLdap is a PHP library typically used in Web Site, Content Management System, MongoDB, Docker, Wordpress applications. authLdap has no bugs, it has no vulnerabilities, it has a Permissive License and it has low support. You can download it from GitHub, GitLab.

Use your existing LDAP as authentication-backend for your wordpress!. So what are the differences to other Wordpress-LDAP-Authentication-Plugins?.
Support
    Quality
      Security
        License
          Reuse

            kandi-support Support

              authLdap has a low active ecosystem.
              It has 55 star(s) with 37 fork(s). There are 13 watchers for this library.
              OutlinedDot
              It had no major release in the last 12 months.
              There are 38 open issues and 84 have been closed. On average issues are closed in 195 days. There are 12 open pull requests and 0 closed requests.
              It has a neutral sentiment in the developer community.
              The latest version of authLdap is 2.5.3

            kandi-Quality Quality

              authLdap has 0 bugs and 0 code smells.

            kandi-Security Security

              authLdap has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.
              authLdap code analysis shows 0 unresolved vulnerabilities.
              There are 0 security hotspots that need review.

            kandi-License License

              authLdap is licensed under the MIT License. This license is Permissive.
              Permissive licenses have the least restrictions, and you can use them in most projects.

            kandi-Reuse Reuse

              authLdap releases are available to install and integrate.

            Top functions reviewed by kandi - BETA

            kandi has reviewed authLdap and discovered the below as its top functions. This is intended to give you an instant insight into authLdap implemented functionality, and help decide if they suit your requirements.
            • Binds to the current connection
            • Connect to the server
            • Performs a search on the LDAP server
            • Returns the current URI .
            • Add LDAP .
            • Creates a LdapUri from a string .
            • Creates an invalid LDAP - URI from a string .
            Get all kandi verified functions for this library.

            authLdap Key Features

            No Key Features are available at this moment for authLdap.

            authLdap Examples and Code Snippets

            No Code Snippets are available at this moment for authLdap.

            Community Discussions

            QUESTION

            OpenVPN + FreeIPA: memberOf Additional Requirement not working
            Asked 2019-Nov-26 at 12:03

            My user authenticates fine through OpenVPN AS, using LDAP authentication over FreeIPA.

            Now I want to restrict OpenVPN to enforce that they belong to a certain group.

            I've created a User Group in FreeIPA, and changed OpenVPN to have an "Additional LDAP Requirement" of "memberOf=CN=myGroup,CN=groups,CN=accounts,DC=mgmt,DC=company,DC=uk"

            But when I try to authenticate now, I get access denied, with this error in openvpn logs:

            ...

            ANSWER

            Answered 2019-Nov-26 at 12:03

            Ah found it.

            OpenVPNAS was using anonymous binding to connect to FreeIPA in order to authenticate people. With anonymous binding, it isn't permitted to see group membership!

            Fix was to change OpenVPNAS to bind as an admin user. Now it works fine.

            Source https://stackoverflow.com/questions/59048665

            QUESTION

            How to reference user account in FreeIPA database to user account in Web app database
            Asked 2018-Oct-18 at 13:31

            My company has decided to use FreeIPA in order to make available Single Sign On feature for our employees. I am not familiar at all with Kerberos/LDAP and similar because i have never used those technologies before.

            We have 70 users - they have Windows OS machines and SSO should be used for several Python (Django) web apps, WordPress web sites and possibly for Roundcube web email and OpenVPN access. They don't have access to web servers at all so SSH accounts are not important for this story.

            Our python web app has database table with users' data which is in relation with some other tables and it is very important for us to have every single user added to those tables (via our web app interface) because otherwise our app will not work properly. Having that in mind, i would like to know if there is a way somehow to reference user from FreeIPA's database to our web app's and wordpress' databases, example below:

            Not every user has access to every web app and not every user has the same privileges in those apps.

            We have already defined user privileges in every web app separately and everything works perfect, so main aim is just to make avaliable SSO for our users. I don't want to bother with user groups and privileges in FreeIPA system, will be i able to avoid that? When user gets Kerberos ticket i want those web apps to recognize his/her account which is referenced to corresponding user account in FreeIPA database, and so has certain privileges in those apps.

            In this scenario it is obvious that i will have to add every new user two times - in FreeIPA database and in web app's database, but that's not a problem, i just want to connect/reference those user accounts somehow.

            EDIT to Michael Ströder's answer:

            As i see, i would have to add every existing user manually to FreeIPA with "--uid" command because FreeIPA gives those attributes to every user automatically. I agree, i would not use user names for UID but only integers. So, i have imagined to make it like this - i would have to link every user's uid number to application's DB user's table ID column. Let say, if John has UID #7 he should also have ID #7 in WordPress wp_users table, and that looks fine to me. I think i could easily manage this in my custom python app, but i'm unsure how to manage this in WordPress, is there some plugin that could be use for such things? I've found AuthLDAP but i'm not sure if that is the right way to do it? Thanks in advance

            ...

            ANSWER

            Answered 2018-Oct-18 at 13:31

            The usual way is to have unique and persistent user names (String), usually stored in attribute uid in FreeIPA (or other LDAP servers) and use this as key in your application's DB table.

            Note that uid does not contain the POSIX-UID (Integer) which is actually stored in attribute uidNumber.

            I'd strongly recommend not to derive user names stored in uid from personal names because these often change. Also you should never reuse user names.

            FreeIPA also has attribute nsUniqueId which contains a UUID generated during creation of the entry. It will not be modified during life-time of the entry. If you want to use that you have to take care that entries are not deleted/re-created by an external identity management systems all the time. (Other LDAP servers are using standard attribute entryUUID).

            Source https://stackoverflow.com/questions/52815073

            Community Discussions, Code Snippets contain sources that include Stack Exchange Network

            Vulnerabilities

            No vulnerabilities reported

            Install authLdap

            You can download it from GitHub, GitLab.
            PHP requires the Visual C runtime (CRT). The Microsoft Visual C++ Redistributable for Visual Studio 2019 is suitable for all these PHP versions, see visualstudio.microsoft.com. You MUST download the x86 CRT for PHP x86 builds and the x64 CRT for PHP x64 builds. The CRT installer supports the /quiet and /norestart command-line switches, so you can also script it.

            Support

            For any new features, suggestions and bugs create an issue on GitHub. If you have any questions check and ask questions on community page Stack Overflow .
            Find more information at:

            Find, review, and download reusable Libraries, Code Snippets, Cloud APIs from over 650 million Knowledge Items

            Find more libraries
            CLONE
          • HTTPS

            https://github.com/heiglandreas/authLdap.git

          • CLI

            gh repo clone heiglandreas/authLdap

          • sshUrl

            git@github.com:heiglandreas/authLdap.git

          • Stay Updated

            Subscribe to our newsletter for trending solutions and developer bootcamps

            Agree to Sign up and Terms & Conditions

            Share this Page

            share link

            Consider Popular Content Management System Libraries

            Try Top Libraries by heiglandreas

            Org_Heigl_Hyphenator

            by heiglandreasPHP

            JUnitDiff

            by heiglandreasPHP

            Org_Heigl_Ghostscript

            by heiglandreasPHP

            HybridAuth

            by heiglandreasPHP

            holidayChecker

            by heiglandreasPHP