Skip Menu |

This queue is for tickets about the RT-Extension-LDAPImport CPAN distribution.

Report information
The Basics
Id: 76926
Status: new
Priority: 0/
Queue: RT-Extension-LDAPImport
People
Owner: Nobody in particular
Requestors: JThuau [...] spacex.com
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: (no value)

History Show all quoted text
  Tue May 01 15:01:49 2012 JThuau [...] spacex.com - Ticket created
Subject: Feature-request: filter for "privileded user" in config
Date: Tue, 1 May 2012 19:01:36 +0000
To: "bug-RT-Extension-LDAPImport [...] rt.cpan.org" <bug-RT-Extension-LDAPImport [...] rt.cpan.org>
From: Joachim Thuau <JThuau [...] spacex.com>
I wonder if it would be possible to get a filter in the config to check when users are updated/searched if they are matching a filter, then have them imported/updated as "privileged" instead of mass-importing users as privileged (enabled or disabled). I am using the import to import all my active directory users, as well as kerberos for Auth. I see an option to either have all users imported "as privileged" or not, but not for "some users". I will try to figure out a way to have those users enabled (maybe as a third-pass after importing users and groups). Thanks, Jok -- | Joachim Thuau | IT Systems Engineer - Linux / SpaceX |
  Thu May 10 12:12:02 2012 JThuau [...] spacex.com - Correspondence added
Subject: Re: [rt.cpan.org #76926] Feature-request: filter for "privileded user" in config
Date: Thu, 10 May 2012 16:11:38 +0000
To: "bug-RT-Extension-LDAPImport [...] rt.cpan.org" <bug-RT-Extension-LDAPImport [...] rt.cpan.org>
From: Joachim Thuau <JThuau [...] spacex.com>
Good morning. Here is a patch against 0.31 that adds a new option in the config that is used to "privileged" after everyone is imported. I'm not sure if the patch is really in the proper format (sorry, first contrib ever!) After importing users and group, do another query using a different filter and "privilege" all users returning from that query. Setting to add to RT_SiteConfig for example could be: Set( $LDAPPrivilegedFilter, '(&(objectClass=user)(!(objectClass=computer))(memberOf=CN=RT Privileged Users,OU=Users,DC=Spacex,DC=corp))'); Note: as implemented, the system doesn't "remove" the privileged flag if users no longer match the filter. Comment/feedback welcome. Thanks, Jok -- | Joachim Thuau | IT Systems Engineer - Linux / SpaceX | | Cell: 310-890-7937 | Office: 310-363-6153 |

Message body is not shown because sender requested not to inline it.