1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<TITLE> [Mageia-sysadm] mediawiki
</TITLE>
<LINK REL="Index" HREF="index.html" >
<LINK REL="made" HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20mediawiki&In-Reply-To=%3C201102171240.51846.bgmilne%40staff.telkomsa.net%3E">
<META NAME="robots" CONTENT="index,nofollow">
<META http-equiv="Content-Type" content="text/html; charset=us-ascii">
<LINK REL="Previous" HREF="002765.html">
<LINK REL="Next" HREF="002771.html">
</HEAD>
<BODY BGCOLOR="#ffffff">
<H1>[Mageia-sysadm] mediawiki</H1>
<B>Buchan Milne</B>
<A HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20mediawiki&In-Reply-To=%3C201102171240.51846.bgmilne%40staff.telkomsa.net%3E"
TITLE="[Mageia-sysadm] mediawiki">bgmilne at staff.telkomsa.net
</A><BR>
<I>Thu Feb 17 11:40:51 CET 2011</I>
<P><UL>
<LI>Previous message: <A HREF="002765.html">[Mageia-sysadm] mediawiki
</A></li>
<LI>Next message: <A HREF="002771.html">[Mageia-sysadm] mediawiki
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#2769">[ date ]</a>
<a href="thread.html#2769">[ thread ]</a>
<a href="subject.html#2769">[ subject ]</a>
<a href="author.html#2769">[ author ]</a>
</LI>
</UL>
<HR>
<!--beginarticle-->
<PRE>On Thursday, 17 February 2011 09:05:00 Oliver Burger wrote:
><i> 2011/2/17 Michael Scherer <<A HREF="https://www.mageia.org/mailman/listinfo/mageia-sysadm">misc at zarb.org</A>>
</I>><i>
</I>><i> > Le dimanche 13 février 2011 à 16:48 +0100, Oliver Burger a écrit :
</I>><i> > > First: there is no ldap-extension in the package, since I don't know
</I>><i> > > ldap.
</I>><i> > > Second: the src.rpm creates two rpm packages, a normal mediawiki
</I>><i> > > package and our multilingual one.
</I>><i> > > We should somehow patch it so that normal mediawiki uses its own user
</I>><i> > > registration tool and authentification while the mageia multilingual
</I>><i> > > one should use catdap for registration and ldap for authentification...
</I>><i> >
</I>><i> > Well, that's something that do not requires patching, as when the wiki
</I>><i> > was choosed, ldap authentication was on the required feature list.
</I>><i>
</I>><i> No ldap-support itself doesn't need patching, it's just an extension
</I>><i> to add and some
</I>><i> configuration strings in LocalSettings.php that have to be set after
</I>><i> installation and
</I>><i> initial mediawiki setup.
</I>><i> But shouldn't we use identity.mageia.org instead of mediawiki's own
</I>><i> registration tool? Or can this be done by configuration in
</I>><i> LocalSettings.php?
</I>
This works on our (old) installation:
$wgGroupPermissions['*']['createaccount'] = false;
Users still need to be notified how to create accounts though.
><i> blingme told me in webteam meeting yesterday he could help.
</I>
The rest of the settings for LDAPAuthentication.php should be as follows. Note
that the option to pull preferences from LDAP includes the perferredLanguage
attribute (which we currently set on registration, but the user is able to
change it - we may want to try and constrain the values that can be put there
in future).
$wgLDAPDomainNames = array("Mageia");
#Values to be populated by puppet:
$wgLDAPServerNames = array("Mageia" => "<%= ldap_server %>");
$wgLDAPBaseDNs = array("Mageia" => "<%= dc_suffix %>");
$wgLDAPProxyAgent = array("Mageia" => "<%= ldap_account %>");
$wgLDAPProxyAgentPassword = array ("Mageia" => "<%= ldap_password %>");
$wgLDAPEncryptionType = array("Mageia" => "tls");
# To match bugzilla hardcoded length
$wgMinimalPasswordLength = 6;
//Allow the use of the local database as well as the LDAP database.
//Good for transitional purposes. Disable when done.
#$wgLDAPUseLocal = false;
$wgLDAPUseLocal = true;
$wgLDAPWriteLocation = array();
$wgLDAPSearchAttributes = array("Mageia" => "uid");
$wgLDAPMailPassword = false;
//Option for allowing the retreival of user preferences from LDAP
//Only pulls a small amount of info currently
$wgLDAPRetrievePrefs = array("Mageia" => true);
//Whether the username in the group is a full DN (AD generally does this), or
//just the username (posix groups generally do this)
$wgLDAPGroupUseFullDN = array( "Mageia" => true );
//The objectclass of the groups we want to search for
$wgLDAPGroupObjectclass = array( "Mageia"=>"groupOfNames" );
//The attribute used for group members
$wgLDAPGroupAttribute = array( "Mageia"=>"member" );
//Whether or not the plugin should search in nested groups
$wgLDAPGroupSearchNestedGroups = array( "Mageia"=>false );
$wgLDAPUseLDAPGroups = array( "Mageia"=>true );
$wgLDAPGroupNameAttribute = array( "Mageia"=>"cn" );
Regards,
Buchan
</PRE>
<!--endarticle-->
<HR>
<P><UL>
<!--threads-->
<LI>Previous message: <A HREF="002765.html">[Mageia-sysadm] mediawiki
</A></li>
<LI>Next message: <A HREF="002771.html">[Mageia-sysadm] mediawiki
</A></li>
<LI> <B>Messages sorted by:</B>
<a href="date.html#2769">[ date ]</a>
<a href="thread.html#2769">[ thread ]</a>
<a href="subject.html#2769">[ subject ]</a>
<a href="author.html#2769">[ author ]</a>
</LI>
</UL>
<hr>
<a href="https://www.mageia.org/mailman/listinfo/mageia-sysadm">More information about the Mageia-sysadm
mailing list</a><br>
</body></html>
|
