Versions Compared

Old Version 7

changes.mady.by.user David Wolff

Saved on

compared with

New Version 8

changes.mady.by.user David Wolff

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Wiki Markup
{scrollbar}

#XmlExample

Anchor
XmlExample
XmlExample

...

To use this method the roleName and roleSearchMatching options must be set. The LDAPLoginModule will perform an LDAP search using the roleSearchMatching filter to search for the authenticating user's distinguished name within each group entries' roleName attribute. To skip this method the roleName option MUST be left unset. If the roleSearchMatching option is left unset and the roleName option is set then the LDAPLoginModule will attempt to perform the search and throw an exception.

Example

Using the example configuration above and a user with the name davidwolff logging in the following LDAP search would occur:

Find the roles using a user entry's attribute that contains the groups a user is a member of (e.g. a memberOf attribute).

...