From 2b3d041a3436ab6add8d3d0380f300a0c1f45379 Mon Sep 17 00:00:00 2001 From: rautenberg Date: Tue, 2 Jun 2015 11:28:44 +0200 Subject: add old post for bugzilla LDAP configuration --- ...ic-ldap-group-combined-with-apache-ldap-auth.md | 28 ++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 _posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md diff --git a/_posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md b/_posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md new file mode 100644 index 0000000..ca64e98 --- /dev/null +++ b/_posts/2014-04-29-bugzilla-authentication-for-specific-ldap-group-combined-with-apache-ldap-auth.md @@ -0,0 +1,28 @@ +--- +layout: post +title: "Bugzilla Authentication for specific LDAP group combined with Apache LDAP Auth" +description: "" +category: +tags: [] +--- +{% include JB/setup %} + +Bugzilla has a plugin to support LDAP user authentication, but a support for group restricted access is not implemented. +An easy workaround to solve this problem the Bugzilla LDAP authentication setup can be combined with Apache2 ldap_authz module based login. + +* Apache2 authentication gives login credentials to Bugzilla. + + + + AuthName "Bugzilla login required. " + AuthType Basic + AuthBasicProvider ldap + AuthLDAPURL "ldap://myserver.org:389/ou=people,dc=myldapdomain,dc=org?uid,mail,cn?sub" + AuthzLDAPAuthoritative on + AuthLDAPBindDN "cn=proxyagent,dc=myldapdomain,dc=org" + AuthLDAPBindPassword "myverysecretpassword" + Require ldap-group cn=MyGroup,ou=groups,dc=myldapdomain,dc=org + AuthLDAPRemoteUserAttribute uid + + +NOTE: Do set user access rights after the first login of a user. -- cgit v1.2.3