https://www.redmine.org/https://www.redmine.org/favicon.ico?16793021292019-02-07T18:40:56ZRedmineRedmine - Patch #30757: LDAP Contextless login in Active Directoryhttps://www.redmine.org/issues/30757?journal_id=898812019-02-07T18:40:56ZGuilherme Chehab
<ul></ul><p>Well it broke automatic user creation and getting add user from LDAP server for, in both cases, auth_source_ldap.rb tries to bind again with anonymous binds, instead of the current user's dn and password... <br />Have to review the code with a more elegant solution, I will review the patch and submit it again.</p> Redmine - Patch #30757: LDAP Contextless login in Active Directoryhttps://www.redmine.org/issues/30757?journal_id=900452019-02-11T14:05:00ZGuilherme Chehab
<ul><li><strong>File</strong> <a href="/attachments/22391">auth_source_ldap.rb.diff</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/22391/auth_source_ldap.rb.diff">auth_source_ldap.rb.diff</a> added</li><li><strong>Status</strong> changed from <i>New</i> to <i>Resolved</i></li></ul><p>Fixed on the fly automatic user creation.<br />Fixed add new user searching using AD, but administrator user must been logged using Active Directory credentials</p> Redmine - Patch #30757: LDAP Contextless login in Active Directoryhttps://www.redmine.org/issues/30757?journal_id=901082019-02-13T21:28:33ZHolger Just
<ul><li><strong>Status</strong> changed from <i>Resolved</i> to <i>New</i></li></ul><p>I'm not sure if this is documented anywhere, but you can set the LDAP <strong>Account</strong> to <code>$login</code> (literally that string starting with a dollar character) and leave the <strong>Password</strong> field empty, Redmine will use the username and password provided by the user as they login to get the user details from the LDAP server.</p>
<p>The only significant difference to your patch appears to be that Redmine doesn't automatically append the domain. If this is necessary to login your users, they should/need to always append the domain to their username when logging in.</p>
<p>Does this already solve your requirement? In that case, we should just document this feature.</p>