Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
3.1.1
-
None
-
None
Description
The SimpleLDAPAuthenticator assumes that the SECURITY_PRINCIPAL is the same thing as the Publisher ID, which doesn't make much sense for LDAP. I think we should extend this a bit so that we get the uid out of LDAP and use that as the default mapping for the publisher ID - I think that makes a lot more sense and allows the user to send whatever bind name they want in for the get_auth_token username.
Also, should look at the context connection again and see if we can persist this, although I had a lot of problems trying to get a reconnecting connection to work on OpenLDAP.