LDAP default group

Next topic

Author	Message
Samuel Sauder	Monday 09 January 2006 11:21:20 am I am having some struggles understanding how LDAPUserGroup configuration works. Please help me sort this out. Or if it is a developer question and I should post it in that forum, let me know. 1) Does this particular group name have to exist on the LDAP server as well? I know it needs to exist on the EZp side. 2) What is the purpose of making this configuration item an array? If I use the ldap cron job that synchronizes any changes in a persons group definitions, what is this group listing for? I can see the logic that if you specify one group it behaves as an LDAP specific guest group (if you want to keep regular guests separate). 3) Does the order of groups coming from the LDAP server have any correlation to the logic being used in ldapuser classes and cronjob? Or in the configuration of my default group? My experience so far... I have attempted to use the default group idea but I am running into a strange issue where things start to misbehave if my first group listed from LDAP is not yet setup in EZp. EZpublish 3.7.2
Samuel Sauder	Wednesday 11 January 2006 10:38:00 am I finally got it to work. I will attempt to answer my own questions. 1. no 2. still don't know why this could be an array... 3. no and no. What I did find that worked is that my default LDAP group needs to be inside another User Group. If it is at the root of the Users object, things may fail.
j jevack	Thursday 02 February 2006 4:04:01 am Samuel, Regarding the LDAPUserGroup configuration, did you find the following to be an accurate explanation of how things worked (this is a part of another ldap forum post): <i> If the LDAPUserGroup is an array, then the first one will be the default placement of ldap users. If it's not, then all ldap users are stored in the same eZ publish user group. LDAPUserGroupAttributeType and LDAPUserGroupAttribute are used to specify which attribute of the ldap user object eZ publish should use when deciding where to place the users. So, an example: LDAPUserGroupType=name LDAPUserGroup[]=Default LDAPUserGroup[]=Secretary LDAPUserGroup[]=Clerk LDAPUserGroup[]=Boss LDAPUserGroupAttributeType=name LDAPUserGroupAttribute=employeetype Now, when logging in, eZ publish looks at the LDAP object, and finds the attribute whose name is employeetype, and reads its value. Then, eZ publish searches for an eZ publish user group whose name equals the given value. If it is found, then the user is stored there. If not, it is stored in Default. </i> I'm having trouble getting users stored in appropriate ezp groups. At this point, ezp is putting a user in every group specified in the LDAPUserGroup array regardless of the values in the LDAPUserGroupAttributeType/LDAPUserGroupAttribute variables. Thanks Jason
Daniel Sippel	Monday 27 February 2006 2:09:33 am Hello j jevack! I experienced the same problem as you with eZ publish 3.7.3, but I think this is not a bug. You have to specify only ONE LDAPUserGroup[], the one where the default LDAP-Users should be placed. Every time a user logs in and his LDAP attribute e.g. employeeType matches an existing group name in eZ publish, he will be placed in this group. Daniel
Samuel Sauder	Tuesday 28 February 2006 7:09:48 am Jason, from my experience Daniel is correct. Default means "if I can't find any (existing in EzPublish) groups that match (to LDAP groups) for this user." So if you define LDAPUserGroup as an array, it means if there is no match assign them to all these groups. (I think the above quote and example you mentioned is misleading.)

eZ debug

Timing:	Jan 30 2025 22:23:58
Script start
Timing:	Jan 30 2025 22:23:58
Module start 'layout'
Timing:	Jan 30 2025 22:23:58
Module start 'content'
Timing:	Jan 30 2025 22:23:59
Module end 'content'
Timing:	Jan 30 2025 22:23:59
Script end

Main resources:

Total runtime	1.1012 sec
Peak memory usage	8,192.0000 KB
Database Queries	65

Timing points:

Checkpoint	Start (sec)	Duration (sec)	Memory at start (KB)	Memory used (KB)
Script start	0.0000	0.0052	588.1328	151.2109
Module start 'layout'	0.0053	0.0047	739.3438	220.6875
Module start 'content'	0.0100	1.0904	960.0313	4,271.7500
Module end 'content'	1.1003	0.0009	5,231.7813	11.8594
Script end	1.1012		5,243.6406

Time accumulators:

Accumulator	Duration (sec)	Duration (%)	Count	Average (sec)
Ini load
Load cache	0.0035	0.3133	16	0.0002
Check MTime	0.0012	0.1053	16	0.0001
Mysql Total
Database connection	0.0007	0.0626	1	0.0007
Mysqli_queries	1.0180	92.4377	65	0.0157
Looping result	0.0006	0.0542	63	0.0000
Template Total	1.0487	95.2	2	0.5243
Template load	0.0017	0.1583	2	0.0009
Template processing	1.0469	95.0652	2	0.5235
Template load and register function	0.0017	0.1523	1	0.0017
states
state_id_array	0.0017	0.1567	1	0.0017
state_identifier_array	0.0020	0.1851	2	0.0010
Override
Cache load	0.0015	0.1371	44	0.0000
Sytem overhead
Fetch class attribute can translate value	0.0019	0.1725	3	0.0006
Fetch class attribute name	0.0019	0.1746	5	0.0004
XML
Image XML parsing	0.0005	0.0445	3	0.0002
class_abstraction
Instantiating content class attribute	0.0000	0.0011	5	0.0000
General
dbfile	0.0007	0.0620	10	0.0001
String conversion	0.0000	0.0007	4	0.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

Usage	Requested template	Template	Template loaded
1	node/view/full.tpl	full/forum_topic.tpl	extension/sevenx/design/simple/override/templates/full/forum_topic.tpl
5	content/datatype/view/ezxmltext.tpl	<No override>	extension/community_design/design/suncana/templates/content/datatype/view/ezxmltext.tpl
10	content/datatype/view/ezxmltags/paragraph.tpl	<No override>	extension/ezwebin/design/ezwebin/templates/content/datatype/view/ezxmltags/paragraph.tpl
5	content/datatype/view/ezxmltags/line.tpl	<No override>	design/standard/templates/content/datatype/view/ezxmltags/line.tpl
1	print_pagelayout.tpl	<No override>	extension/community/design/community/templates/print_pagelayout.tpl
Number of times templates used: 22 Number of unique templates used: 5

Time used to render debug report: 0.0001 secs