Details

    • Type: New Feature New Feature
    • Status: Closed Closed
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: LDAP-1.1
    • Component/s: LDAP
    • Labels:
      None
    • Number of attachments :
      0

      Description

      It would be really nice for Sonar administrators to be able to define mappings between LDAP groups and Sonar roles. This would avoid a lot of manual configuration.

      See for instance http://platform.xwiki.org/xwiki/bin/view/AdminGuide/Authentication#HLDAPAuthentication

        Issue Links

          Activity

          Hide
          Fabrice Daugan added a comment - - edited

          I think the nexus way would be a good solution. It uses a naming convention.
          See http://www.sonatype.com/books/nexus-book/reference/ldap-sect-mapping-roles-ldap.html

          Show
          Fabrice Daugan added a comment - - edited I think the nexus way would be a good solution. It uses a naming convention. See http://www.sonatype.com/books/nexus-book/reference/ldap-sect-mapping-roles-ldap.html
          Hide
          Alexandre Navarro added a comment -

          +1

          Show
          Alexandre Navarro added a comment - +1
          Hide
          fabrice added a comment - - edited

          I succeed in filtering by user group by hacking configuration file :

          In place of ldap.userObjectClass:user
          I put :
          ldap.userObjectClass:user)(memberof=CN=sonar_users,CN=Users,DC=MY_COMPANY,DC=local

          The request generated is :
          (&(objectClass="user")(memberof="CN=sonar_users,CN=Users,DC=MY_COMPANY,DC=local")(SAMAccountName=myaccount))

          it allow me to configure my sonar to create automatically users from a success Active directory authentification. Users allowed are in the AD sonar_users group

          Show
          fabrice added a comment - - edited I succeed in filtering by user group by hacking configuration file : In place of ldap.userObjectClass:user I put : ldap.userObjectClass:user)(memberof=CN=sonar_users,CN=Users,DC=MY_COMPANY,DC=local The request generated is : (&(objectClass="user")(memberof="CN=sonar_users,CN=Users,DC=MY_COMPANY,DC=local")(SAMAccountName=myaccount)) it allow me to configure my sonar to create automatically users from a success Active directory authentification. Users allowed are in the AD sonar_users group
          Hide
          Eddie Webb added a comment -

          Is this also fixed fro crowd?
          http://sonar.15.n6.nabble.com/sonar-dev-Support-for-groups-from-Crowd-td4526492.html
          "In a better world should be a dedicated ticket in Sonar Core and another one for Crowd Plugin, but I think that now it's ok to aggregate votes in LDAP Plugin."

          Show
          Eddie Webb added a comment - Is this also fixed fro crowd? http://sonar.15.n6.nabble.com/sonar-dev-Support-for-groups-from-Crowd-td4526492.html "In a better world should be a dedicated ticket in Sonar Core and another one for Crowd Plugin, but I think that now it's ok to aggregate votes in LDAP Plugin."
          Hide
          Eddie Webb added a comment -

          I see that http://jira.codehaus.org/browse/SONARPLUGINS-1046 is now trakcing Crowd group support separately, and have cast my vote there.

          Show
          Eddie Webb added a comment - I see that http://jira.codehaus.org/browse/SONARPLUGINS-1046 is now trakcing Crowd group support separately, and have cast my vote there.

            People

            • Assignee:
              Evgeny Mandrikov
              Reporter:
              Vincent Latombe
            • Votes:
              19 Vote for this issue
              Watchers:
              12 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: