|
KOHA
LDAP: Revision 24
Kako podesiti Kohu da radi s LDAP bazom? Što nam omogućava Koha?
Time dobivamo nove korisnike prvi puta kada se ulogiraju. Kako vidjeti strukturu LDAP baze?ldapvi --host _hostname_:389 -d ldapvi --host _hostname_:389 -d uid=_username_ Logiranje korisnika sa login@ffzg.hrGreška: [Tue Jan 13 23:58:36 2009] opac-user.pl: LDAP Auth rejected : invalid password for user 'mglavica@ffzg.hr'. LDAP error #50: LDAP_INSUFFICIENT_ACCESS [Tue Jan 13 23:58:36 2009] opac-user.pl: # The client does not have sufficient access to perform the requested [Tue Jan 13 23:58:36 2009] opac-user.pl: operation C4::Auth_with_ldap 3.10
<ldapserver id="ldapserver" listenref="ldapserver">
<!--
<hostname>ldaps://ldap.ffzg.hr</hostname>
-->
<hostname>ldap://localhost:1389</hostname>
<base>dc=ffzg,dc=hr</base>
<replicate>1</replicate> <!-- add new users from LDAP to Koha database -->
<update>0</update> <!-- update existing users in Koha database -->
<auth_by_bind>1</auth_by_bind>
<principal_name>%s</principal_name> <!-- optional, for auth_by_bind: a printf format to make userPrincipalName from koha userid -->
<mapping> <!-- match koha SQL field names to your LDAP record field names -->
<firstname is="givenname" ></firstname>
<surname is="sn" ></surname>
<address is="ffzg-ml_postanska_adresa_0" ></address>
<!--
<city is="ffzg-prebivaliste_mjesto" ></city>
-->
<city is="ffzg-ml_postanska_adresa_1" ></city>
<zipcode is="ffzg-prebivaliste_postanski_broj"></zipcode>
<branchcode is="local-branch" >FFZG</branchcode>
<userid is="hredupersonuniqueid" ></userid>
<password is="userpassword" ></password>
<email is="mail" ></email>
<categorycode is="local-categorycode" >IMP</categorycode>
<dateofbirth is="ffzg-datum_rodjenja" ></dateofbirth>
<sex is="ffzg-spol" ></sex>
<phone is="ffzg-ml_telefoni_fixed"></phone>
<mobile is="ffzg-ml_telefoni_mobile"></mobile>
</mapping>
</ldapserver>
To skoro radi, osim što je LDAP DN C<login@ffzg.hr> umjesto C<uid=login,dc=ffzg,dc=hr>
Ali, kako se spajamo na pravi ldap.ffzg.hr preko naše proxy skripte koja obogaćuje zapis podacima,
if ( $bind->{dn} =~ m{@} ) {
$bind->{dn} =~ s/[@\.]/,dc=/g;
$bind->{dn} =~ s/^/uid=/;
}
auth as user promjene (prvi pokušaj)i konfiguracijom u /etc/koha/koha-conf.xml
<ldapserver id="ldapserver" listenref="ldapserver">
<hostname>ldaps://ldap.ffzg.hr</hostname>
<base>dc=ffzg,dc=hr</base>
<replicate>1</replicate> <!-- add new users from LDAP to Koha database -->
<update>1</update> <!-- update existing users in Koha database -->
<mapping> <!-- match koha SQL field names to your LDAP record field names -->
<firstname is="givenname" ></firstname>
<surname is="sn" ></surname>
<address is="ffzg-ml_postanska_adresa_0" ></address>
<!--
<city is="ffzg-prebivaliste_mjesto" ></city>
-->
<city is="ffzg-ml_postanska_adresa_1" ></city>
<zipcode is="ffzg-prebivaliste_postanski_broj"></zipcode>
<branchcode is="local-branch" >FFZG</branchcode>
<userid is="hredupersonuniqueid" ></userid>
<password is="userpassword" ></password>
<email is="mail" ></email>
<categorycode is="local-categorycode" >IMP</categorycode>
<dateofbirth is="ffzg-datum_rodjenja" ></dateofbirth>
<sex is="ffzg-spol" ></sex>
<phone is="ffzg-ml_telefoni_fixed"></phone>
<mobile is="ffzg-ml_telefoni_mobile"></mobile>
</mapping>
</ldapserver>
ldaps na upstream LDAPldaps zahtjeva instalaciju IO::Socket::SSL sa sudo apt-get install libio-socket-ssl-perl cardnumber ne dolazi iz ldap-aOsim kod prvog ulogiravanja korisnika kada mu se postavlja isti kao mail Koje podatke imamo u LDAP bazi?ovo spada pod osnovne podatke:
* uid - identifikator, korisnicko ime
"Kada cu produzivati korisnicke racune, ja cu svim studentima Linkovi |