wordpress

Upgraded to WordPress 2.8 Beta 1

May 18, 2009 by clifgriffin 2 Comments

Upgraded to WordPress 2.8 Beta 1. So far so good, with only one weird error:

Fatal error: Call to undefined method SearchSpider::_weak_escape()

I traced this to the Search Unleashed plugin. It interferes with several critical operations including the saving of drafts, searching, publishing, etc. I have obviously disabled it in light of this.

As far as actual WordPress bugs I’m most concerned about, it appears they are not going to fix the Ticket Trac issue I reported to them concerning out of order comments when threading is enabled. This does not make sense to me as this is a fairly large problem that is very reproducable.

Comments on the bug report seem to indicate this will require a fairly big change to the comment walker, but still.

Other than that, there is nothing obviously different about the beta. The admin interface is identical with no visual changes at all that I can see. It appears that all of my plugins have surived this upgrade cycle. *crosses fingers*

Haven’t tested Simple LDAP Login yet but I’m hopeful.

Filed Under: Uncategorized Tagged With: Search Unleashed, wordpress

Simple LDAP Login 1.4.0.1 for WordPress

May 13, 2009 by clifgriffin 310 Comments

This article only deals with version 1.3 and later. To view and discuss issues pertaining to version 1.2 and prior, click here.

Integrating WordPress with LDAP shouldn’t be difficult. Now it isn’t.

Simple LDAP Login provides the features you need with the simple configuration you want. It has everything you need to get started today.

Features

Supports Active Directory and OpenLDAP (and other directory systems which comply to the LDAP standard, such as OpenDS)
Supports TLS
Uses up-to-date methods for WordPress 3+ authentication routines.
Includes three login modes:
- Normal Mode: Authenticates existing wordpress usernames against LDAP. This requires you to create all WordPress accounts manually using the same usersnames as those in your LDAP directory.
- Account Creation Mode 1: Creates WordPress accounts automatically for any LDAP user.
- Account Creation Mode 2: Creates WordPress accounts automatically for LDAP users in a specific Group you specify.
Intuitive control panel.

Architecture

Simple LDAP Login adds an authentication filter to WordPress that authentication requests must pass. In doing so, it makes several decisions.

Can the provided credentials be authenticated against LDAP?
- If so, is the username a valid WP username?
  - If not, can we create a WP user?
    - If we can, does the user belong to the right (if any) group?
      - If the user does, create the WordPress user and log the user in.
- If the username is already valid wordpress user, are they in the right group?
  - Is so, log the user in.

This is simply a high level overview. The actual logic the plugin employs is more complex, but hopefully this gives you an idea, philosophically, about how the plugin accomplishes what it does.

Installation

Use the WordPress plugin directory to install the plugin or upload the directory “simple-ldap-login” to the `/wp-content/plugins/` directory
Activate the plugin through the ‘Plugins’ menu in WordPress
Immediately update the settings to those that best match your environment by going to Settings -> Simple LDAP Login
If you don’t get the settings right the first time…don’t fret! Just use your wordpress credentials…they will always work in low security mode.
Once you have the settings correct, you can change the security mode to High Security (if you so desire).
To make your life easier, consider using two different browsers (e.g., IE and Firefox) to do testing. Change settings in one. Test in the other. This will prevent any chance of being locked out.

Control panel.

Frequently Asked Questions

Other than WordPress, what does my system require?

If you are using Active Directory, you will probably need PHP 5. This is because I’m using adLDAP 3.0 to do my Active Directory integration. As far as I know, the rest of the code should work with PHP 4. It is also possible that the functionality I’m using with adLDAP 3.0 does not depend directly on PHP 5. Your mileage may vary.

Other than that, it is imperative that your installation of PHP be compiled with LDAP. Without it you may see errors referencing undefined functions like “ldap_connect”. You can view more information about PHP and LDAP here.

How do I know what the correct settings are?

I have tried to make the settings as self-explanatory as possible. If you are struggling figuring them out, you may need to speak with your LDAP administrator. I realize this is an obnoxious response, but there is no good, fail proof way to help you discover these settings. A good place to start, if you’re feeling daring, might be to use ADSIEdit for Windows and Active Directory, or GQ for Linux and OpenLDAP.

It’s still not working, what other things can I try?

If you are confident your settings are correct and it still does not work, it may be time to check for port or firewall issues. If your LDAP server is running on a non-standard port or an obsolete version of the LDAP protocol you are going to have issues. Port 389 is the port this plugin, and nearly every other LDAP enabled software expects. They are also expecting protocol version 3. If you are using an old version of LDAP or running a non-standard port you may need to modify the code that the plugin runs or update your LDAP installation.

Unfortunately I can’t be relied upon to assist with these types of requests. I chose not to support these scenarios because they are infrequent and because they confuse everyone else.

I took all of your advice, it’s still not working!

Post your question in the comments below, or e-mail me: me[at]clifgriffin.com

I’ll do my best to get you up and running!

How can I donate?

If you would like to donate to this project, please visit the donations page.

Download Now – Updated 9/09/2010

Click here to download Simple LDAP Login 1.4.0.1 from the WordPress plugin directory.

Filed Under: Code Tagged With: adLDAP, plugins, Simple LDAP Login, wordpress

Simple LDAP Login 1.3 Beta Released

May 12, 2009 by clifgriffin 3 Comments

Version 1.3

Simple LDAP Login 1.3 Beta has been posted. The new version supports integrated user creation based on LDAP authentication, group membership, or the original mode. Additionally, I have implemented Olivier Fontes’ MXC LDAP plugin into my plugin. In theory, this should add support for OpenLDAP. It is important to note, however, that I have NOT been able to test any OpenLDAP scenarios. The code logic makes sense to me, but I am 100% confident there will be issues that come up. I’m counting on you guys to help me out in testing this.

The new version seems to work flawlessly in Active Directory. I will be posting a complete description of how the new plugin works philosophically soon. Until now, I believe it should be fairly self-explanatory.

The new version is available under the versions link on the right. I have not made it the primary release because it is in beta at this point and many features have not been tested adequately.

Official WordPress Download Link

http://downloads.wordpress.org/plugin/simple-ldap-login.1.3.zip/

Main Page

http://clifgriffin.com/2008/10/28/simple-ldap-login-wordpress-plugin//

Please post all issues you find in the comments or e-mail me at me[at]clifgriffin.com.

Filed Under: Uncategorized Tagged With: plugins, Simple LDAP Login, wordpress

WordPress Plugin Updates

May 6, 2009 by clifgriffin 1 Comment

I spent some time updating all of my WordPress plugins today. A few months ago commenter Bramus noted that Simple LDAP Login allowed all WordPress users, regardless of rights, to access the administrative page. I took an appalling amount of time to get around to updating this, but I went ahead and updated it in all of my plugins. (Those with admin pages)

I also fixed a couple of other minor issues that hardly merit mention.

If you are using these plugins, I suggest you go ahead and update.

Filed Under: Uncategorized Tagged With: featured category, Simple LDAP Login, Simple Post Template, wordpress

Comments out of order in WordPress 2.7?

January 9, 2009 by clifgriffin 4 Comments

I have opened up a discussion on wordpress.org about comments getting out of order in WordPress 2.7. So far, it seems to effect the zero level comments in threaded discussions. We have yet to trace it to a repeatable scenario, but the evidence is clear. For example:

Comment 1 - Day 1
  Comment 5 - Day 2 (reply to Comment 1)
  Comment 7 - Day 4 (reply to Comment 1)
Comment 2 - Day 1
Comment 9 - Day 5
  Comment 10 - Day 6
Comment 3 - Day 2
  Comment 6 - Day 3 (reply to Comment 3)
    Comment 8 - Day 10 (reply to comment 6)
Comment 4 - Day 2

This is a fictional example but demonstrates the problems we’re seeing. This may lead to a official bug trac. If you have noticed this issue, please join the discussion. We need more examples to figure out what is causing this.

Update:

Commenter Gh. Alex has figured out how to replicate this error on any post. From his comment on wordpress forums:

I have found a pattern for this problem.
1. Doesnt’t matter how many comments you have;
2. Doesnt’t matter what theme you have installed;
3. Comments show up in order if you disable threaded comments;

By default, most of the themes with threaded comments support have that “Reply” button removed when a comment reaches 3/4/5 (depending of your options) levels of comments. That’s great but how about the edit_comments.php section from the admin area? The reply link is still there even if you reach your selected number of levels.
So, if you reply to a comment that has reached the max numbers of comments, from the admin area, this comment will show up in the bottom of the page and messes everything up.
I’ve made a test post to see what i mean, i can easily replicate the problem.

Very sorry for my bad english, i hope you guys can understand what i have just said:)

Needless to say, we’ll be opening up a bug report with WordPress.

Filed Under: Uncategorized Tagged With: comments, wordpress, Wordpress 2.7

Fixing your theme so that it works with WordPress.com Stats…

December 29, 2008 by clifgriffin 3 Comments

WordPress.com Stats is one of the most popular WordPress plugins. I have tried using it in the past, but it never collected stats. I never actually pursued a solution to this because I was using another stats plugin that was partially functional and able to give me most of the information I wanted.

Today I spent a little time searching the WordPress support forums and found that my theme was missing a function call that the plugin relies on.

Simply put, in your theme’s footer.php file, right above your </body> and </html> tags, you need to add:

<?php wp_footer(); ?>

And that’s all there is to it. You can be sure that this is safe to add because every theme is supposed to have this line. wp_footer() doesn’t generate any output so you shouldn’t see any changes to your site’s display.

If it still doesn’t work, be sure you are testing it while logged out. (You can always use another browser to save time.) It will not register hits from a logged in user. Failing that, if you’re using the WP-Super-Cache (as you should be) plugin, try clearing your cache.

Filed Under: Uncategorized Tagged With: php, wordpress, WordPress.com Stats, WP-Super-Cache

Simple Post Template Version 1.0

December 24, 2008 by clifgriffin Leave a Comment

Over the past few days I made some fairly significant changes to Simple Post Template. If you are upgrading, be sure to read the upgrade instructions first!

In short, I’ve moved away from flat files and now store the template in the database. I execute PHP statements using eval. (A pretty nifty PHP function!) All settings are now stored and modified in the WordPress administration pages and you can select whether or not to prefill new posts with your template or click a button on the new post page.

New administration panel.

New button (only appears when auto fill is deselected in admin panel)

I for one like the result.

That’s all for now.

Filed Under: Uncategorized Tagged With: plugin, Simple Post Template, wordpress

Simple LDAP Login 1.2

December 20, 2008 by clifgriffin 1 Comment

I spent a few minutes updating Simple LDAP Login to support multiple domain controllers. Thanks to commenter babul for reminding me to include this feature!

Filed Under: Uncategorized Tagged With: plugins, Simple LDAP Login, wordpress

How To Fix WordPress Automatic Upgrades in WordPress 2.5. – 2.7 (Plugins and WordPress)

December 9, 2008 by clifgriffin 18 Comments

Note: These instructions assume Apache is running as the user apache under the group apache. This may not be how your installation is setup. For instance, my MediaTemple account runs apache under the user clifgriffin.com and the group clifgriffin.com. Your mileage may vary. Substitute your user and group for apache and apache in the instructions below.

If you’re looking for a quick solution, skip down to “The easy way”.

I manage three WordPress installations currently. Two are personal. One is for my employer. The personal installations are hosted with MediaTemple. The other is hosted internally on a Dell server with RedHat.

Quite awhile ago, I upgraded this WordPress installation to 2.5.1. At the time, I noticed that automatic plugin upgrades were not functioning, but I didn’t bother to figure out why. After I upgraded to 2.7-RC1, I noticed that the same fate had befell WordPress upgrades. I couldn’t automatically upgrade WordPress or plugins.

When trying to upgrade, I would be presented with a screen asking for my FTP information, including hostname, username, and password.

So, today, armed with absolutely nothing else to do, I decided to attempt to fix this problem. Initially, I was suspicious that the only way WordPress can do upgrades is by utilizing an ftp server on the current machine. Fortunately, this was not the case–in fact its the last resort. While a few Google searches turned up nothing initially, I eventually found this which led me to this. In this article, Keith outlays a few steps to fix this (if you need to fix this, do not perform the following steps…there is an easier way…read on):

Change the group for the wp-content/plugins directory to apache.
Manually define a WP_TEMP_DIR
Set write permissions for this folder and assign apache as the group for this folder as well.
Lastly, he recommends replacing the function getmyuid() with posix_getuid() in wp-admin/includes/file.php

This last step he identifies as either a bug or a feature. (He isn’t sure which.)

These steps seemed to fix the problem–especially the last one–but I wasn’t satifised the result. I’m using WordPress 2.7-RC1…that means this problem has persisted two major versions. I decided to investigate further.

As Keith explaisn, getmyuid() and posix_getuid() return two different things. getmyuid() returns the UID of the person who owns the script that is running. posix_getuid() returns the UID of the process running the script. This led me to believe that the underlying problem was not a bug and simply an issue of file ownership.

The easy way:

I reverted the changes to /wp-admin/includes/file.php and proceeded to do a recursive ownership change across my whole WordPress installation. I also made sure that wp-content/ was user writeable. Simply put, run the following commands from the directory in which WordPress is installed:

chown -R apache:apache *
chmod 755 wp-content/

The first command sets both the owner and group of all files and folders in the current directory to apache. It is important to do this because WordPress uses the apache user to accomplish the upgrade. If any of the files are owned by your user, root, or anyone else, it will fail.

After I made these changes, I was able to do all upgrades (both plugins and WordPress) with no issues. Keith’s instructions are very nearly correct. They simply overlook the owner and focus on the group. The group may be important, but it isn’t the problem in this scenario.

If you do not have root access…

If you do not have root access, you will not be able to change ownership of the files. You should be able to compensate for this with more liberal permissions.

If this is true for you, try setting wp-content/ to 775 instead of 755.

So, in short to enable automatic plugin upgrades on WordPress 2.5.1 and later:

Change owernship and group of all WordPress files to apache.
Make sure the wp-content/ directory is writeable by apache.

[Thanks to commenter Daniel for non-root user instructions.]

Filed Under: Uncategorized Tagged With: apache, plugins, RedHat, wordpress

Simple LDAP Login Updated to Version 1.1

December 3, 2008 by clifgriffin Leave a Comment

Official WordPress Link

Simple LDAP Login 1.1 for WordPress 2.7

Full details are here.

Moved settings to administration pages under settings.

Upgraded to latest version of adLDAP 2.1.

Got rid of credentials. (They are not neccessary for the authenticate function in adLDAP!)

Plugin is now upgrade proof. Settings are stored using WordPress’s setting functions.

You can upgrade from the wordpress plugin page, or download it here:

Simple LDAP Login 1.1 for WordPress 2.7-rc1

Filed Under: Uncategorized Tagged With: adLDAP, Simple LDAP Login, wordpress, Wordpress 2.7

Upgraded to WordPress 2.8 Beta 1

Comments out of order in WordPress 2.7?

Fixing your theme so that it works with WordPress.com Stats…

Simple Post Template Version 1.0

How To Fix WordPress Automatic Upgrades in WordPress 2.5. – 2.7 (Plugins and WordPress)

Recent Blog Posts

Latest Tweets

Contact Me