[Building Sakai] LDAP authentication
Sam Ottenhoff
ottenhoff at longsight.com
Thu Dec 15 15:38:21 PST 2011
Yes, if you can limit via the basePath then you're all set.
There is no way I know, besides editing code, to block users that have a
certain attribute from logging in at all. What you can do is map users
that have a certain LDAP attribute to a Sakai role... and then you can
remove all permissions from this Sakai role, especially the ability to
create a My Workspace (site.add.usersite). This essentially removes the
ability for certain types of users to do anything useful after login.
--Sam
On Thu, Dec 15, 2011 at 5:10 PM, Carl Hall <carl at hallwaytech.com> wrote:
> I have LDAP authentication working thanks to Steve's great
> documentation[1]. With this now setup, I would like only users that have a
> certain property to be able to login rather than everyone in LDAP. Is this
> something that should be added to the basePath or is there another field
> this should be noted in?
>
> 1
> https://confluence.sakaiproject.org/display/~steve.swinsburg/LDAP+in+Sakai+2.5
>
> _______________________________________________
> sakai-dev mailing list
> sakai-dev at collab.sakaiproject.org
> http://collab.sakaiproject.org/mailman/listinfo/sakai-dev
>
> TO UNSUBSCRIBE: send email to
> sakai-dev-unsubscribe at collab.sakaiproject.org with a subject of
> "unsubscribe"
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-dev/attachments/20111215/dcddee16/attachment.html
More information about the sakai-dev
mailing list