Posted on: 02/14/05 06:10pm
By: Anonymous (mthomas)
OK, perhaps someone else has done this but I have not seen it posted here before. I have thought about it on and off over the last year and never sat down to try till today. I kept think ok how to I make Geeklog use AD instead of the builtin GL security...then answer was, I don't. I will posting my resultant code shortly. I have a working script. The requirement is that php be compiled with ldap support, that is the only requirement.
There is some minor code additions (very minor) needed to the users.php file.
In a nut shell it works!
Active Directory Integration Made Easy!
Posted on: 02/14/05 06:11pm
By: mthomas
Opps killed my cookie as I was testing my site out hehe.
Active Directory Integration Made Easy!
Posted on: 02/14/05 08:11pm
By: mthomas
Ok, where as the code works perfectly I'm not satified yet , before I am ready to release this code, or perhaps as lite/premium version (premium as in $5-10)..
Anyway before I release it I will put togeather working code that will create a new user in GL if a valid AD user tries to sign in and doesn't yet have a GL signin.
....btw is there any interest in this code?
Active Directory Integration Made Easy!
Posted on: 02/14/05 11:25pm
By: i2eeD
Sounds nifty, but I'd love to know a little bit more about Active Directory. Could you sum it up for me or give me a good link? Thanks.
Active Directory Integration Made Easy!
Posted on: 02/14/05 11:33pm
By: mthomas
hmm just noticed someone else did write something similar middle of last year, if I recall I was on vaction that whole week so doubtless I missed it.
Old LDAP Thread[*1]
I will review that threads code and see what I can find that may help my code. I already have the code down for pulling all needed info from AD to create GL users, my next task will be to reverse the flow use php to create the user as an admin tool this will obvious require some careful code work inorder to prevent hacking of the AD by a user or internet hacker if the site is exposed (See my Lockdown Hack to help with that)
My code is a bit more streamlined, as it does not require an alternate login screen, as it uses a more inline approach.
The Only thing I may not be able to do is change the password, well right away anyhow, as AD requires SSL to change the password I believe. However the easy work around there is to exicute a command line or server local vbs script for setting the password.
Active Directory Integration Made Easy!
Posted on: 02/15/05 04:46pm
By: mthomas
[QUOTE BY= i2eeD] Sounds nifty, but I'd love to know a little bit more about Active Directory. Could you sum it up for me or give me a good link? Thanks.[/QUOTE]
Active Directory is basiclly LDAP and DNS rolled into on for the Windows Enviroment (also is hookable with MacOSX and Linux is proper apps)
Active Directory Integration Made Easy!
Posted on: 01/04/06 09:46am
By: lgriffin
Has anything else been done on uasing Active Directory and Geeklog 1.4?