Menu
▾
▴
Re: [webmin-devel] LDAP Groups and RFC2307BIS
|
From: Jamie C. <jca...@we...> - 2013-12-24 07:48:17
|
On 23/Dec/2013 11:54 Stephen G. Parry <sg...@ma...> wrote .. > Hi Jamie, > > The RFC has not changed in four years and I think is unlikely too. > Actually, developing this may not be not as bad as it sounds - e.g. the > attributes are read from LDAP and written to it regardless of the names > I think so backend writing / reading can remain as is. > Here is a break down of what we need: > In module config: > - a checkbox (enable rfc2307bis) > - a text field (dn member attribute name). > > In Edit User, Group Membership: > - Secondary Groups - functions just as now, but is relabelled 'Secondary > Groups (by UID)' > - New panel, shown only if rcf2307bis is set - Secondary Groups (by DN) > - pulls list of groups from the dn member attribute dictated by the > config. The left hand side can be populated in the same way as the > existing panel. The right hand will need a new query of some kind. > > In Edit Group, Group Details: > - Members - functions just as now, but labelled 'Member UIDs' > - New panel, shown only if rfc2307bis is set - labelled 'Member DNs'. > The left hand side will need a new LDAP query to populate it. Will need > a new variable to store list in. That would work .. although alternately, perhaps if rfc2307bis mode is enabled the old-style list of member UIDs could be replaced entirely by member DNs? > In LDAP Groups list: > - Concatenate the two attribute lists together before displaying as > members column > > I'll have a look at the code over the holiday and see if I can come up > with a provisional patch. Thanks, a patch would be awesome! - Jamie |
