novactive / ezldapauthenticatorbundle
Novactive eZ LDAP Authenticator Bundle, A bundle to authenticate users against LDAP server
Installs: 7 283
Dependents: 0
Suggesters: 0
Security: 0
Stars: 0
Watchers: 16
Forks: 3
Open Issues: 0
Type:ezplatform-bundle
Requires
- php: ^7.1
- ezsystems/ezpublish-kernel: ^7.1
Requires (Dev)
- friendsofphp/php-cs-fixer: ^2.14
- phpmd/phpmd: ^2.6
- phpstan/phpstan: ^0.11.5
- phpstan/phpstan-symfony: ^0.11.5
- roave/security-advisories: dev-master
- sebastian/phpcpd: ^4.1
- squizlabs/php_codesniffer: ^3.4
This package is auto-updated.
Last update: 2024-11-14 14:41:25 UTC
README
This repository is what we call a "subtree split": a read-only copy of one directory of the main repository. It is used by Composer to allow developers to depend on specific bundles.
If you want to report or contribute, you should instead open your issue on the main repository: https://github.com/Novactive/Nova-eZPlatform-Bundles
Documentation is available in this repository via .md files but also packaged here: https://novactive.github.io/Nova-eZPlatform-Bundles/master/LdapAuthenticatorBundle/README.md.html
A bundle to authenticate users against LDAP server
Installation
Add the lib to your composer.json, run composer require novactive/ezldapauthenticatorbundle to refresh dependencies.
Then inject the bundle in the bundles.php of your application.
Novactive\Bundle\eZLDAPAuthenticatorBundle\EzLdapAuthenticatorBundle::class => [ 'all'=> true ],
Configuration
Bundle configuration
To configure this bundle you should add new section nova_ez_ldap into your config.yml file.
Basic config might be like this one:
nova_ez_ldap: connections: default: ldap: adapter: connection_string: '%ldap_connection_string%' user_provider: base_dn: '%ldap_base_dn%' search_dn: '%ldap_read_only_user%' search_password: '%ldap_read_only_password%' uid_key: uid ezuser: admin_user_id: '%admin_user_id%' user_group_id: '%target_usergroup%' email_attr: mail attributes: first_name: givenName last_name: sn
Instead of connection_string you are able to set host, port, encryption and version separately.
Also you can set options array that will be passed directly to the Symfony Ldap component.
LDAP attributes mapping
To be able to store user who came from LDAP you have to configure mapping between LDAP attributes and eZPublish user fields.
You must map all required fields in the ezuser part.
By default eZPublish needs user credentials and email but you may have any additional fields in you User content class so you should fill all of them.
Target group
All users will be stored in the group user_group_id. You must put group content id here.
Full default config
Here is full default bundle configuration:
nova_ez_ldap: connections: default: ldap: adapter: connection_string: ~ host: localhost port: 389 version: 3 encryption: none # One of "none"; "ssl"; "tls" options: [] user_provider: base_dn: ~ # Required search_dn: ~ # Required search_password: ~ # Required uid_key: uid filter: '({uid_key}={username})' ezuser: admin_user_id: ~ # Required user_group_id: ~ # Required email_attr: ~ # Required attributes: user_attr: ldap_attr
Security configuration
Besides common bundle configuration you will have to add some parameters in security section:
security: providers: chain_provider: chain: providers: [nova_ldap, ezpublish] ezpublish: id: ezpublish.security.user_provider nova_ldap: id: nova_ez.ldap.user_provider firewalls: ezpublish_front: form_login_ldap: service: nova_ez.ldap provider: chain_provider