注:現在添加的認證只是基於ldap密碼驗證,需要在禪道系統裏面有對應的用戶名,否則登陸不成功。
基於http://www.zentao.net/extension-viewext-25.html提供的插件修改。
管理員登陸禪道後臺—》擴展—》添加ldap插件
修改插件裏面ldapserver驗證文件。
module/user/ext/config/ldap.php
$config->ldap->ldap_server = 'ldap://ldap.example.com:389/'; /** * The LDAP Protocol Version, if 0, then the protocol version is not set. For Active Directory use version 3. */ $config->ldap->ldap_protocol_version = 3; /** * Determines whether the LDAP library automatically follows referrals returned by LDAP servers or not. * This maps to LDAP_OPT_REFERRALS ldap library option. For Active Directory, this should be set to OFF. */ $config->ldap->ldap_follow_referrals = 1; //1 ON, 0 OFF $config->ldap->ldap_root_dn = 'ou=www,dc=abc,dc=com'; $config->ldap->ldap_uid_field = 'uid'; //修改爲uid or cn, Use 'sAMAccountName' for Active Directory $config->ldap->ldap_bind_dn = 'CN=admin,OU=admin,DC=abc,DC=com'; $config->ldap->ldap_bind_passwd = 'abcdef'; /** 這一行需要註釋掉 * Search filter for acitve person only, !(userAccountControl:1.2.840.113556.1.4.803:=2) means active user in AD */ #$config->ldap->ldap_organization = '(objectCategory=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))'; |
3. 這樣就可以在禪道里面使用ldap用戶密碼登陸