与gitblit 1.0 LDAP身份验证 [英] ldap authentication with gitblit 1.0

问题描述

我刚刚获得Gitblit的最新版本1.0可以在这里找到。

I have just obtained Gitblit's newest release 1.0 available Here

我试图整合认证的LDAP方法。因为我觉得我的LDAP是非典型我在其中的条款，匹配什么麻烦。

I am trying to integrate the LDAP method of authentication. Since I think my ldap is non typical I'm having trouble with what the terms match against.

到目前为止，我一直在关注有限的资源（因为1.0刚出来）和谷歌群体。

So far, I have been following the limited resources (since 1.0 just came out) and the google groups.

不过，我甚至不能让我的服务器连接。

However, I cannot even get my server to connect.

我将粘贴Gitblit需要验证的字段，然后我会贴一些我的LDAP中列出的相关领域。

I will paste the fields that Gitblit needs for authentication, and then I will paste some of the relevant fields listed in my ldap..

我已经与之前的LDAP结构麻烦，但我想知道如果它仅仅是我的。

I've had trouble with the ldap structure before, but I'm wondering if it is just me.

谢谢！

里面：gitblit.properties

inside: gitblit.properties

realm.ldap.server = http://127.0.0.1 #for this purpose

# Login username for LDAP searches.
  realm.ldap.username = username

# Login password for LDAP searches.
  realm.ldap.password = password

# Root node for all LDAP users
  realm.ldap.accountBase = CN=Users,DC=rem,DC=pri

# Filter criteria for LDAP users
# Query pattern to use when searching for a user account. This may be any valid 
# LDAP query expression, including the standard (&) and (|) operators.
#    ${username} - The text entered as the user name
  realm.ldap.accountPattern = (&(objectClass=person)(sAMAccountName=${jsmith}))

# Root node for all LDAP groups to be used as Gitblit Teams
# This is the root node from which subtree team searches will begin.
  realm.ldap.groupBase = 

# Filter criteria for LDAP groups
# Variables may be injected via the ${variableName} syntax.
# Recognized variables are:
#    ${username} - The text entered as the user name
#    ${dn} - The Distinguished Name of the user logged in
# All attributes from the LDAP User record are available. For example, if a user
# has an attribute "fullName" set to "John", "(fn=${fullName})" will be 
# translated to "(fn=John)".
  realm.ldap.groupMemberPattern = (&(objectClass=group))

这是什么我的目录列表看起来像一张照片（显然识别的东西已被删除）

This is a picture of what my directory listing looks like (obviously the identifying things have been removed)

推荐答案

我不知道什么Gitblit但不应

I don't know anything about Gitblit but shouldn't

realm.ldap.accountPattern = (&(objectClass=person)(sAMAccountName=${jsmith}))

是

realm.ldap.accountPattern = (&(objectClass=person)(sAMAccountName=${username}))

基于可变搜索，或

for variable-based searches, or

realm.ldap.accountPattern = (&(objectClass=person)(sAMAccountName=jsmith))

如果你试图硬code搜索（测试）？

if you were trying to hard-code the search (for testing)?

这篇关于与gitblit 1.0 LDAP身份验证的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！