注:现在添加的认证只是基于ldap密码验证,需要在禅道系统里面有对应的用户名,否则登陆不成功。
基于http://www.zentao.net/extension-viewext-25.html提供的插件修改。
管理员登陆禅道后台—》扩展—》添加ldap插件
修改插件里面ldapserver验证文件。
module/user/ext/config/ldap.php
$config->ldap->ldap_server = 'ldap://ldap.example.com:389/';
/**
* The LDAP Protocol Version, if 0, then the protocol version is not set. For Active Directory use version 3.
*/
$config->ldap->ldap_protocol_version = 3;
/**
* Determines whether the LDAP library automatically follows referrals returned by LDAP servers or not.
* This maps to LDAP_OPT_REFERRALS ldap library option. For Active Directory, this should be set to OFF.
*/
$config->ldap->ldap_follow_referrals = 1; //1 ON, 0 OFF
$config->ldap->ldap_root_dn = 'ou=www,dc=abc,dc=com';
$config->ldap->ldap_uid_field = 'uid'; //修改为uid or cn, Use 'sAMAccountName' for Active Directory
$config->ldap->ldap_bind_dn = 'CN=admin,OU=admin,DC=abc,DC=com';
$config->ldap->ldap_bind_passwd = 'abcdef';
/**
这一行需要注释掉
* Search filter for acitve person only, !(userAccountControl:1.2.840.113556.1.4.803:=2) means active user in AD
*/
#$config->ldap->ldap_organization = '(objectCategory=person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))';
3. 这样可以在禅道里面使用ldap用户密码登陆