I wonder about the necessity to provide "searchDN" and "searchPWD" for non-AD LDAP. Normally, I just give the URL and base of my ldap, and the software uses the name and password the current user enters to connect to LDAP. If this succeeds, the user is positively identified. This way, I don't have to put non-encrypted secret data in a plain text configuation file.
Is this possible with your code?
How do I identify admins?
What is the purpose of the "groupSearch" entry? And "anonymousReadonly"?
I'd love to see any documentation about this code :-)
I wonder about the necessity to provide "searchDN" and "searchPWD" for non-AD LDAP. Normally, I just give the URL and base of my ldap, and the software uses the name and password the current user enters to connect to LDAP. If this succeeds, the user is positively identified. This way, I don't have to put non-encrypted secret data in a plain text configuation file.
Is this possible with your code?
How do I identify admins?
What is the purpose of the "groupSearch" entry? And "anonymousReadonly"?
I'd love to see any documentation about this code :-)