Secure Site / LDAP Auth module integration issues
| Project: | Secure Site |
| Version: | 6.x-2.3 |
| Component: | Code |
| Category: | bug report |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | needs review |
Hi, I am developing a site that relies on the LDAP Integration module and HTTP authentication to an LDAP server to provide access for our private Drupal site. I am very interested in using the Secure Site module to unify the sign on process, but have hit a snag. The two modules work well if the user exists on the site, either because they are native to Drupal or have previously logged in with LDAP Integration. If the user has never logged in, the Secure Site sign in fails, listing the user as Anonymous in the logs.
It does not seem the Secure Sign in is talking to the LDAP server via LDAP Integration. I'm using LDAP Int. 6.x-1.0-beta1. Is there some special step that is required to make Secure Site and LDAP Int. talk to each other or is this a bug? Thank you for your help.
#1
We were able to get the SecureSite and LDAP modules to work together; however, in our setup, automatically creating accounts for new LDAP-based users takes several log-in attempts.
#1-3 Usually, after three failed authentication attempts, SecureSite will stop prompting for HTTP_Auth
#4 LDAP Auth then presents a form-based authentication prompt; looks like this one will handle the auto account creation correctly
#5 Then, SecureSite takes back over and prompts one more time
Very ugly indeed. Yes, we are actually looking for a resolution as well. If anyone has any pointers, we are open.
#2
#3
#4
Here is a patch that resolves the integration of the SecureSite (6.x-2.3) and LDAP_Integration (6.x-1.0-alpha2) modules. I just noticed a new version of the LDAP module, but haven't downloaded it yet.
#5
Opened an issue against the LDAP Integration module as well: http://drupal.org/node/553482
#6
Applied the patch, the user is created (thanks stacysimpson), but unfortunately it seems the LDAP Group is not translated to its drupal role.
#7
Thanks for the work! I was away and hadn't checked on the progress of this issue. I will roll the patch on my test site this week and report back.
#8
stacysimpson's patch (comment #5) won't apply cleanly to ldap_integration-6.x-1.0-beta1; I reshuffled the patch for that version.
#9
Confirmed role mapping is working also. Thanks for the great patch!
#10
My apologies for the delay. Tested the .diff patch and it worked nicely, new account accessed and brought in with correct permissions. Thank you for the work, I'll be dragging it into my site development after our testing is complete.
#11
Thanks for the patch, it works great. It would be good to get it committed to both securesite and ldap_integration.
#12
Patch worked great, however now there is ldap_integration 6.x-1.0-beta2 out which has some security fixes. Anyone willing to submit a patch for this new version? I would if I knew how..