Welcome to Geeklog, Anonymous Monday, November 25 2024 @ 04:28 am EST
Geeklog Forums
Active Directory Integration Made Easy!
mthomas
Anonymous
OK, perhaps someone else has done this but I have not seen it posted here before. I have thought about it on and off over the last year and never sat down to try till today. I kept think ok how to I make Geeklog use AD instead of the builtin GL security...then answer was, I don't. I will posting my resultant code shortly. I have a working script. The requirement is that php be compiled with ldap support, that is the only requirement.
There is some minor code additions (very minor) needed to the users.php file.
In a nut shell it works!
There is some minor code additions (very minor) needed to the users.php file.
In a nut shell it works!
27
12
Quote
Status: offline
mthomas
Forum User
Full Member
Registered: 04/18/04
Posts: 148
Ok, where as the code works perfectly I'm not satified yet , before I am ready to release this code, or perhaps as lite/premium version (premium as in $5-10)..
Anyway before I release it I will put togeather working code that will create a new user in GL if a valid AD user tries to sign in and doesn't yet have a GL signin.
....btw is there any interest in this code?
Anyway before I release it I will put togeather working code that will create a new user in GL if a valid AD user tries to sign in and doesn't yet have a GL signin.
....btw is there any interest in this code?
15
5
Quote
Status: offline
mthomas
Forum User
Full Member
Registered: 04/18/04
Posts: 148
hmm just noticed someone else did write something similar middle of last year, if I recall I was on vaction that whole week so doubtless I missed it.
Old LDAP Thread
I will review that threads code and see what I can find that may help my code. I already have the code down for pulling all needed info from AD to create GL users, my next task will be to reverse the flow use php to create the user as an admin tool this will obvious require some careful code work inorder to prevent hacking of the AD by a user or internet hacker if the site is exposed (See my Lockdown Hack to help with that)
My code is a bit more streamlined, as it does not require an alternate login screen, as it uses a more inline approach.
The Only thing I may not be able to do is change the password, well right away anyhow, as AD requires SSL to change the password I believe. However the easy work around there is to exicute a command line or server local vbs script for setting the password.
Old LDAP Thread
I will review that threads code and see what I can find that may help my code. I already have the code down for pulling all needed info from AD to create GL users, my next task will be to reverse the flow use php to create the user as an admin tool this will obvious require some careful code work inorder to prevent hacking of the AD by a user or internet hacker if the site is exposed (See my Lockdown Hack to help with that)
My code is a bit more streamlined, as it does not require an alternate login screen, as it uses a more inline approach.
The Only thing I may not be able to do is change the password, well right away anyhow, as AD requires SSL to change the password I believe. However the easy work around there is to exicute a command line or server local vbs script for setting the password.
15
8
Quote
Status: offline
mthomas
Forum User
Full Member
Registered: 04/18/04
Posts: 148
Quote by i2eeD: Sounds nifty, but I'd love to know a little bit more about Active Directory. Could you sum it up for me or give me a good link? Thanks.
Active Directory is basiclly LDAP and DNS rolled into on for the Windows Enviroment (also is hookable with MacOSX and Linux is proper apps)
7
9
Quote
All times are EST. The time is now 04:28 am.
- Normal Topic
- Sticky Topic
- Locked Topic
- New Post
- Sticky Topic W/ New Post
- Locked Topic W/ New Post
- View Anonymous Posts
- Able to post
- Filtered HTML Allowed
- Censored Content