Rt and LDAP?


#1

I am working in a company where all employees are already registered in an
LDAP database.
Has anybody considered/implemented a module for rt that gets users (and
their passwords) from an LDAP tree? How difficult would it be to modify rt
to support LDAP for user authentification?

Regards,
H.
Harald Wagener | Systemadministrator
FCB/Wilkens GmbH | Tel.:+49-40-2881-1252
An der Alster 42 | Fax.:+49-40-2881-1263
20099 Hamburg | http://www.fcb-wilkens.com


#2

Well,
RT2 provides somewhat cleaner hooks than RT1 to allow user metadata
and auth to be done against external databases, though nobody that
I know of has actually done it yet. Note, however, that you
will still need to have an RT account for each user inside of
RT’s database…it’s just that RT can then ask another system
for detailed information…

    -jOn Tue, May 08, 2001 at 02:41:30PM +0200, Harald Wagener wrote:

I am working in a company where all employees are already registered in an
LDAP database.
Has anybody considered/implemented a module for rt that gets users (and
their passwords) from an LDAP tree? How difficult would it be to modify rt
to support LDAP for user authentification?

Regards,
H.

Harald Wagener | Systemadministrator
FCB/Wilkens GmbH | Tel.:+49-40-2881-1252
An der Alster 42 | Fax.:+49-40-2881-1263
20099 Hamburg | http://www.fcb-wilkens.com


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

jesse reed vincent – root@eruditorum.orgjesse@fsck.com
70EBAC90: 2A07 FC22 7DB4 42C1 9D71 0108 41A3 3FB3 70EB AC90

Emacs is a pretty good operating system, but Unix has a better editor.


#3

Jesse wrote:

Well,
RT2 provides somewhat cleaner hooks than RT1 to allow user metadata
and auth to be done against external databases, though nobody that
I know of has actually done it yet. Note, however, that you
will still need to have an RT account for each user inside of
RT’s database…it’s just that RT can then ask another system
for detailed information…

    -j

Which would be fine enough for our purposes - not everybody should have
access to the request tracker, but those that do shouldn’t be bothered by
an additional password handling mechanism.

Thanks and regards,
Harald

Harald Wagener | Systemadministrator
FCB/Wilkens GmbH | Tel.:+49-40-2881-1252
An der Alster 42 | Fax.:+49-40-2881-1263
20099 Hamburg | http://www.fcb-wilkens.com


#4

Jesse/Harald,

Where and how (briefly) would one use RT2 and, for example, external
authentication from Apache?

What I have in mind is the following

Redhat Linux 7.X
PAM - With LDAP support (pointing to our 2000 Active Directory)
Apache - With PAM authentication (or just mod_ldap for

authentication)
RT2 - with support for external authentication
(using the BASIC authentication available within HTTP and
Apache)

Is this possible? How?

Regards
JensFrom: Harald Wagener [mailto:hwagener@fcb-wilkens.com]
Sent: 08 May 2001 03:34
To: Jesse
Cc: rt-users@lists.fsck.com
Subject: Re: [rt-users] rt and LDAP?

Jesse wrote:

Well,
RT2 provides somewhat cleaner hooks than RT1 to allow user
metadata
and auth to be done against external databases, though nobody that
I know of has actually done it yet. Note, however, that you
will still need to have an RT account for each user inside of
RT’s database…it’s just that RT can then ask another system
for detailed information…

    -j

Which would be fine enough for our purposes - not everybody should have
access to the request tracker, but those that do shouldn’t be bothered by
an additional password handling mechanism.

Thanks and regards,
Harald

Harald Wagener | Systemadministrator
FCB/Wilkens GmbH | Tel.:+49-40-2881-1252
An der Alster 42 | Fax.:+49-40-2881-1263
20099 Hamburg | http://www.fcb-wilkens.com

rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users


#5

For external auth, you want to look at the attached alternate
autohandler provided by ivan-rt@420.amOn Tue, May 08, 2001 at 03:50:41PM +0200, Jens von Bülow wrote:

Jesse/Harald,

Where and how (briefly) would one use RT2 and, for example, external
authentication from Apache?

What I have in mind is the following

Redhat Linux 7.X
PAM - With LDAP support (pointing to our 2000 Active Directory)
Apache - With PAM authentication (or just mod_ldap for
authentication)
RT2 - with support for external authentication
(using the BASIC authentication available within HTTP and
Apache)

Is this possible? How?

Regards
Jens

-----Original Message-----
From: Harald Wagener [mailto:hwagener@fcb-wilkens.com]
Sent: 08 May 2001 03:34
To: Jesse
Cc: rt-users@lists.fsck.com
Subject: Re: [rt-users] rt and LDAP?

Jesse wrote:

Well,
RT2 provides somewhat cleaner hooks than RT1 to allow user
metadata
and auth to be done against external databases, though nobody that
I know of has actually done it yet. Note, however, that you
will still need to have an RT account for each user inside of
RT’s database…it’s just that RT can then ask another system
for detailed information…

    -j

Which would be fine enough for our purposes - not everybody should have
access to the request tracker, but those that do shouldn’t be bothered by
an additional password handling mechanism.

Thanks and regards,
Harald


Harald Wagener | Systemadministrator
FCB/Wilkens GmbH | Tel.:+49-40-2881-1252
An der Alster 42 | Fax.:+49-40-2881-1263
20099 Hamburg | http://www.fcb-wilkens.com


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

jesse reed vincent – root@eruditorum.orgjesse@fsck.com
70EBAC90: 2A07 FC22 7DB4 42C1 9D71 0108 41A3 3FB3 70EB AC90

Linux is like a Vorlon. It is incredibly powerful, gives terse,
cryptic answers and has a lot of things going on in the background.

autohandler (2.19 KB)