Posts Tagged wordpress
Upgraded to WordPress 2.8 Beta 1
Posted by clifgriffin in Technology on May 18th, 2009
Upgraded to WordPress 2.8 Beta 1. So far so good, with only one weird error:
Fatal error: Call to undefined method SearchSpider::_weak_escape()
I traced this to the Search Unleashed plugin. It interferes with several critical operations including the saving of drafts, searching, publishing, etc. I have obviously disabled it in light of this.
As far as actual WordPress bugs I’m most concerned about, it appears they are not going to fix the Ticket Trac issue I reported to them concerning out of order comments when threading is enabled. This does not make sense to me as this is a fairly large problem that is very reproducable.
Comments on the bug report seem to indicate this will require a fairly big change to the comment walker, but still.
Other than that, there is nothing obviously different about the beta. The admin interface is identical with no visual changes at all that I can see. It appears that all of my plugins have surived this upgrade cycle. *crosses fingers*
Haven’t tested Simple LDAP Login yet but I’m hopeful.
Simple LDAP Login 1.3 for WordPress
Posted by clifgriffin in Code on May 13th, 2009
Find a bug?
If you believe you have found a bug, please open a ticket here. This will allow me to track the issue as a single issue and others to comment and give feedback.
I’m finding it difficult to discern user error from bug from configuration differences among different installations. All of this will lead to a quicker turn around for reported issues. Isn’t that cool?
This article only deals with version 1.3 and later. To view and discuss issues pertaining to version 1.2 and prior, click here.
Integrating WordPress with LDAP shouldn’t be difficult. Now it isn’t.
Simple LDAP Login provides the features you need with the simple configuration you want. It has everything you need to get started today.
Features
- Supports Active Directory and OpenLDAP (and other directory systems which comply to the LDAP standard, such as OpenDS)
- Includes three login modes:
- Normal Mode: Authenticates existing wordpress usernames against LDAP. This requires you to create all WordPress accounts manually using the same usersnames as those in your LDAP directory.
- Account Creation Mode 1: Creates WordPress accounts automatically for any LDAP user.
- Account Creation Mode 2: Creates WordPress accounts automatically for LDAP users in a specific Group you specify.
- Intuitive control panel.
Architecture
Simple LDAP Login redefines the main function WordPress uses to authenticate users. In doing so, it makes several decisions.
- Is the provided username a valid WordPress user?
- If not, are we allowed to create a wordpress user?
- If we are, are we able to authenticate the username and password provided against LDAP?
- If we are, does the user belong to the right (if any) group?
- If the user does, create the wordpress user and log the user in.
- If we are, does the user belong to the right (if any) group?
- If we are, are we able to authenticate the username and password provided against LDAP?
- If the username is a valid wordpress user, is the password provided the same as the one in the WordPress database?
- Is the security mode set to low or the username admin?
- If so, log the user in.
- If not, do the provided credentials successfully authenticate against LDAP?
- If so, is the user in the required groups? (if any)
- If so, log the user in.
- If so, is the user in the required groups? (if any)
- Is the security mode set to low or the username admin?
- If not, are we allowed to create a wordpress user?
This is simply a high level overview. The actual logic the plugin employs is more complex, but hopefully this gives you an idea, philosophically, about how the plugin accomplishes what it does.
Installation
- Upload the directory “simple-ldap-login” to the `/wp-content/plugins/` directory
- Activate the plugin through the ‘Plugins’ menu in WordPress
- Immediately update the settings to those that best match your environment by going to Settings -> Simple LDAP Login
- If you don’t get the settings right the first time…don’t fret! Just use your wordpress credentials…they will always work! (See security section)
The control panel.
Frequently Asked Questions
Other than WordPress, what does my system require?
If you are using Active Directory, you will probably need PHP 5. This is because I’m using adLDAP 3.0 to do my Active Directory integration. As far as I know, the rest of the code should work with PHP 4. It is also possible that the functionality I’m using with adLDAP 3.0 does not depend directly on PHP 5. Your mileage may vary.
Other than that, it is imperative that your installation of PHP be compiled with LDAP. Without it you may see errors referencing undefined functions like “ldap_connect”. You can view more information about PHP and LDAP here.
How do I know what the correct settings are?
I have tried to make the settings as self-explanatory as possible. If you are struggling figuring them out, you may need to speak with your LDAP administrator. I realize this is an obnoxious response, but there is no good, fail proof way to help you discover these settings. A good place to start, if you’re feeling daring, might be to use ADSIEdit for Windows and Active Directory, or GQ for Linux and OpenLDAP.
It’s still not working, what other things can I try?
If you are confident your settings are correct and it still does not work, it may be time to check for port or firewall issues. If your LDAP server is running on a non-standard port or an obsolete version of the LDAP protocol you are going to have issues. Port 389 is the port this plugin, and nearly every other LDAP enabled software expects. They are also expecting protocol version 3. If you are using an old version of LDAP or running a non-standard port you may need to modify the code that the plugin runs or update your LDAP installation.
Unfortunately I can’t be relied upon to assist with these types of requests. I chose not to support these scenarios because they are infrequent and because they confuse everyone else.
I took all of your advice, it’s still not working!
Post your question in the comments below, or e-mail me: me[at]clifgriffin.com
I’ll do my best to get you up and running!
How can I donate?
If you would like to donate to this project, please visit the donations page.
Roadmap/Security Issues
The following features and concerns will be addressed in coming versions.
- Potentially allow the provision of an admin password for binding to domains with tighter security.
- Potentially Support TLS
- Look into supporting non-standard LDAP installations
- Code cleanup to improve readability, on-going maintenance.
Download Now – Updated 8/04/2009
Click here to download Simple LDAP Login 1.3.0.3 from the WordPress plugin directory.
Simple LDAP Login 1.3 Beta Released
Posted by clifgriffin in Technology on May 12th, 2009
Simple LDAP Login 1.3 Beta has been posted. The new version supports integrated user creation based on LDAP authentication, group membership, or the original mode. Additionally, I have implemented Olivier Fontes’ MXC LDAP plugin into my plugin. In theory, this should add support for OpenLDAP. It is important to note, however, that I have NOT been able to test any OpenLDAP scenarios. The code logic makes sense to me, but I am 100% confident there will be issues that come up. I’m counting on you guys to help me out in testing this.
The new version seems to work flawlessly in Active Directory. I will be posting a complete description of how the new plugin works philosophically soon. Until now, I believe it should be fairly self-explanatory.
The new version is available under the versions link on the right. I have not made it the primary release because it is in beta at this point and many features have not been tested adequately.
Official WordPress Download Link
Main Page
Please post all issues you find in the comments or e-mail me at me[at]clifgriffin.com.
WordPress Plugin Updates
Posted by clifgriffin in Technology on May 6th, 2009
I spent some time updating all of my WordPress plugins today. A few months ago commenter Bramus noted that Simple LDAP Login allowed all WordPress users, regardless of rights, to access the administrative page. I took an appalling amount of time to get around to updating this, but I went ahead and updated it in all of my plugins. (Those with admin pages)
I also fixed a couple of other minor issues that hardly merit mention.
If you are using these plugins, I suggest you go ahead and update.
Recent Comments