Mercurial > kallithea
comparison docs/setup.rst @ 770:5f82a00b92b1 beta
docs update
| author | Marcin Kuzminski <marcin@python-works.com> |
|---|---|
| date | Fri, 26 Nov 2010 10:00:17 +0100 |
| parents | 3389f272ece1 |
| children | aaf2fc59a39a |
comparison
equal
deleted
inserted
replaced
| 769:4bdcc08b04c4 | 770:5f82a00b92b1 |
|---|---|
| 80 | 80 |
| 81 | 81 |
| 82 Setting up LDAP support | 82 Setting up LDAP support |
| 83 ----------------------- | 83 ----------------------- |
| 84 | 84 |
| 85 | |
| 86 RhodeCode starting from version 1.1 supports ldap authentication. In order | 85 RhodeCode starting from version 1.1 supports ldap authentication. In order |
| 87 to use ldap, You have to install python-ldap package. This package is available | 86 to use ldap, You have to install python-ldap package. This package is available |
| 88 via pypi, so You can install it by running | 87 via pypi, so You can install it by running |
| 89 | 88 |
| 90 :: | 89 :: |
| 93 | 92 |
| 94 :: | 93 :: |
| 95 | 94 |
| 96 pip install python-ldap | 95 pip install python-ldap |
| 97 | 96 |
| 98 | 97 .. note:: |
| 99 python-ldap requires some certain libs on Your system, so before installing it | 98 python-ldap requires some certain libs on Your system, so before installing |
| 100 check that You have at least `openldap`, and `sasl` libraries. | 99 it check that You have at least `openldap`, and `sasl` libraries. |
| 101 | 100 |
| 102 ldap settings are located in admin->permissions section, | 101 ldap settings are located in admin->ldap section, |
| 103 | 102 |
| 104 Here's a typical ldap setup:: | 103 Here's a typical ldap setup:: |
| 105 | 104 |
| 106 Enable ldap = checked #controlls if ldap access is enabled | 105 Enable ldap = checked #controls if ldap access is enabled |
| 107 Host = host.domain.org #acctuall ldap server to connect | 106 Host = host.domain.org #actual ldap server to connect |
| 108 Port = 389 or 689 for ldaps #ldap server ports | 107 Port = 389 or 689 for ldaps #ldap server ports |
| 109 Enable LDAPS = unchecked #enable disable ldaps | 108 Enable LDAPS = unchecked #enable disable ldaps |
| 110 Account = <account> #access for ldap server(if required) | 109 Account = <account> #access for ldap server(if required) |
| 111 Password = <password> #password for ldap server(if required) | 110 Password = <password> #password for ldap server(if required) |
| 112 Base DN = CN=users,DC=host,DC=domain,DC=org | 111 Base DN = uid=%(user)s,CN=users,DC=host,DC=domain,DC=org |
| 113 | 112 |
| 114 | 113 |
| 115 `Account` and `Password` are optional, and used for two-phase ldap | 114 `Account` and `Password` are optional, and used for two-phase ldap |
| 116 authentication so those are credentials to access Your ldap, if it doesn't | 115 authentication so those are credentials to access Your ldap, if it doesn't |
| 117 support anonymous search/user lookups. | 116 support anonymous search/user lookups. |
| 118 | 117 |
| 119 If all data are entered correctly, and `python-ldap` is properly installed | 118 If all data are entered correctly, and `python-ldap` is properly installed |
| 120 Users should be granted to access RhodeCode wit theire ldap accounts. When | 119 Users should be granted to access RhodeCode wit ldap accounts. When |
| 121 logging at the first time an special ldap account is created inside RhodeCode, | 120 logging at the first time an special ldap account is created inside RhodeCode, |
| 122 so You can control over permissions even on ldap users. If such user exists | 121 so You can control over permissions even on ldap users. If such user exists |
| 123 already in RhodeCode database ldap user with the same username would be not | 122 already in RhodeCode database ldap user with the same username would be not |
| 124 able to access RhodeCode. | 123 able to access RhodeCode. |
| 125 | 124 |