diff options
| -rw-r--r-- | _posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/_posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md b/_posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md new file mode 100644 index 0000000..ca64e98 --- /dev/null +++ b/_posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md @@ -0,0 +1,28 @@ +--- +layout: post +title: "Bugzilla Authentication for specific LDAP group combined with Apache LDAP Auth" +description: "" +category: +tags: [] +--- +{% include JB/setup %} + +Bugzilla has a plugin to support LDAP user authentication, but a support for group restricted access is not implemented. +An easy workaround to solve this problem the Bugzilla LDAP authentication setup can be combined with Apache2 ldap_authz module based login. + +* Apache2 authentication gives login credentials to Bugzilla. + + + <Location "/"> + AuthName "Bugzilla login required. " + AuthType Basic + AuthBasicProvider ldap + AuthLDAPURL "ldap://myserver.org:389/ou=people,dc=myldapdomain,dc=org?uid,mail,cn?sub" + AuthzLDAPAuthoritative on + AuthLDAPBindDN "cn=proxyagent,dc=myldapdomain,dc=org" + AuthLDAPBindPassword "myverysecretpassword" + Require ldap-group cn=MyGroup,ou=groups,dc=myldapdomain,dc=org + AuthLDAPRemoteUserAttribute uid + </Location> + +NOTE: Do set user access rights after the first login of a user. |