Henrik Nordstrom <hno@squid-cache.org> writes:
> ons 2003-01-15 klockan 16.31 skrev Dieter Kluenter:
[...]
> Previous versions of what? You must be confusing squid_ldap_group with
> some other Squid related LDAP tool..
I'm referring to
http://group-ldap-auth.sourceforge.net/
in particular to section "Future".
which arouse the impression that squid_ldap_group is based on
group-ldap-auth.
>
> The squid_ldap_group helper did not exists prior to Squid-2.5.STABLE1 as
> the interface it uses to Squid is completely new for 2.5.STABLE1.
>
> squid_ldap_group is based on an LDAP search filter to match if the user
> is member of the group or not, such as
> -f "(&(member=uid=%s,*)(objectClass=groupOfNames))"
>
> If using the updated helper (available as a patch from the "known bugs"
> page) then you can also base the query on DN lookups of the user using
> simlar arguments as you use for squid_ldap_auth to locate the user DN
> and this is then available as %s in the group filter.
>
> Most/all of this is explained in the man page, with some additional
> examples in the updated version.
Thank you for making this clear.
-Dieter
-- Dieter Kluenter | Systemberatung Tel:040.64861967 | Fax: 040.64891521 mailto: dkluenter@schevolution.com http://www.schevolution.com/tourReceived on Wed Jan 15 2003 - 11:47:52 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:41 MST