You are here

Home » API reference » Simple LDAP 7

README.txt in Simple LDAP 7

Same filename in this branch
  1. 7 README.txt
  2. 7 contrib/README.txt
  3. 7 simple_ldap_role/README.txt
  4. 7 simple_ldap_user/README.txt
Same filename and directory in other branches
  1. 7.2 simple_ldap_user/README.txt
Simple LDAP User
================

This module allows authentication to the LDAP directory configured in the
Simple LDAP module. It also provides synchronization services both to and from
LDAP and Drupal. It supports mapping LDAP attributes to Drupal user object
fields (both native, and using Field API).

Configuration
=============

In addition to the configuration available in the administration UI, an
attribute map can be specified in settings.php, using the variable
$conf['simple_ldap_user_attribute_map'].

This variable is an array of arrays, where each of the arrays have the
following items:

* drupal - The field name on the Drupal user. This must be the machine name of
	   the field. To specify Field module fields, prefix the field name with a
	   hash, e.g. '#field_foo'. If no hash prefix is found, it is assumed that the
	   field is a property of the user itself, such as name, pass, mail, etc.

	   This can also be an array of drupal properties or fields. If the array
	   contains more than one entry, synchronization for that map only works in
	   the drupal->ldap direction, and the fields are concatenated with a space
	   separator.

	   Note: If you are mapping a Field module field that does not store its data
	   in a 'value' column, you need to specify the name of the column in the
	   mapping itself using square brackets. See the Country example below.

* ldap - The LDAP attribute on the LDAP user.

Example:
--------
$conf['simple_ldap_user_attribute_map'] = array(

  // Generic example.
  array(
    'drupal' => '#drupal-user-field-machine-name',
    'ldap' => 'ldap-attribute',
  ),

  // First name example.
  array(
    'drupal' => '#field_first_name',
    'ldap' => 'givenName',
  ),

  // Last name example.
  array(
    'drupal' => '#field_last_name',
    'ldap' => 'sn',
  ),

  // Country example.
  array(
    'drupal' => '#field_country[iso2]',
    'ldap' => 'localityName',
  ),

  // Timezone example (saved directly to users table, note there is no '#').
  array(
    'drupal' => 'timezone',
    'ldap' => 'l',
  ),

  // Combined fields example.
  array(
    'drupal' => array(
      '#field_first_name',
      '#field_last_name',
    ),
    'ldap' => 'displayName',
  ),

);

Active Directory Example:
-------------------------
$conf['simple_ldap_user_attribute_map'] = array(
  array(
    'drupal' => '#field_first_name',
    'ldap' => 'givenName',
  ),
  array(
    'drupal' => '#field_last_name',
    'ldap' => 'sn',
  ),
  array(
    'drupal' => array(
      '#field_first_name',
      '#field_last_name',
    ),
    'ldap' => 'CN',
  ),
  array(
    'drupal' => array(
      '#field_first_name',
      '#field_last_name',
    ),
    'ldap' => 'displayName',
  ),
);

Testing
=======

The simpletests provided with this module automatically configure themeselves
to use the active configuration in order to perform a real-world test against
your real LDAP server.

THIS MEANS THAT DATA WILL BE ADDED/DELETED ON YOUR REAL LDAP SERVER!

The simpletests only operate against entries it creates, but in the event of a
failure, the test cannot clean up after itself. If you are testing a specific
configuration, it is recommended to run the test against a development or
staging directory first.

File

simple_ldap_user/README.txt
View source 
  1. Simple LDAP User

  2. ================

  3. 

  4. This module allows authentication to the LDAP directory configured in the

  5. Simple LDAP module. It also provides synchronization services both to and from

  6. LDAP and Drupal. It supports mapping LDAP attributes to Drupal user object

  7. fields (both native, and using Field API).

  8. 

  9. Configuration

  10. =============

  11. 

  12. In addition to the configuration available in the administration UI, an

  13. attribute map can be specified in settings.php, using the variable

  14. $conf['simple_ldap_user_attribute_map'].

  15. 

  16. This variable is an array of arrays, where each of the arrays have the

  17. following items:

  18. 

  19. * drupal - The field name on the Drupal user. This must be the machine name of

  20. 	   the field. To specify Field module fields, prefix the field name with a

  21. 	   hash, e.g. '#field_foo'. If no hash prefix is found, it is assumed that the

  22. 	   field is a property of the user itself, such as name, pass, mail, etc.

  23. 

  24. 	   This can also be an array of drupal properties or fields. If the array

  25. 	   contains more than one entry, synchronization for that map only works in

  26. 	   the drupal->ldap direction, and the fields are concatenated with a space

  27. 	   separator.

  28. 

  29. 	   Note: If you are mapping a Field module field that does not store its data

  30. 	   in a 'value' column, you need to specify the name of the column in the

  31. 	   mapping itself using square brackets. See the Country example below.

  32. 

  33. * ldap - The LDAP attribute on the LDAP user.

  34. 

  35. Example:

  36. --------

  37. $conf['simple_ldap_user_attribute_map'] = array(

  38. 

  39.   // Generic example.

  40.   array(

  41.     'drupal' => '#drupal-user-field-machine-name',

  42.     'ldap' => 'ldap-attribute',

  43.   ),

  44. 

  45.   // First name example.

  46.   array(

  47.     'drupal' => '#field_first_name',

  48.     'ldap' => 'givenName',

  49.   ),

  50. 

  51.   // Last name example.

  52.   array(

  53.     'drupal' => '#field_last_name',

  54.     'ldap' => 'sn',

  55.   ),

  56. 

  57.   // Country example.

  58.   array(

  59.     'drupal' => '#field_country[iso2]',

  60.     'ldap' => 'localityName',

  61.   ),

  62. 

  63.   // Timezone example (saved directly to users table, note there is no '#').

  64.   array(

  65.     'drupal' => 'timezone',

  66.     'ldap' => 'l',

  67.   ),

  68. 

  69.   // Combined fields example.

  70.   array(

  71.     'drupal' => array(

  72.       '#field_first_name',

  73.       '#field_last_name',

  74.     ),

  75.     'ldap' => 'displayName',

  76.   ),

  77. 

  78. );

  79. 

  80. Active Directory Example:

  81. -------------------------

  82. $conf['simple_ldap_user_attribute_map'] = array(

  83.   array(

  84.     'drupal' => '#field_first_name',

  85.     'ldap' => 'givenName',

  86.   ),

  87.   array(

  88.     'drupal' => '#field_last_name',

  89.     'ldap' => 'sn',

  90.   ),

  91.   array(

  92.     'drupal' => array(

  93.       '#field_first_name',

  94.       '#field_last_name',

  95.     ),

  96.     'ldap' => 'CN',

  97.   ),

  98.   array(

  99.     'drupal' => array(

  100.       '#field_first_name',

  101.       '#field_last_name',

  102.     ),

  103.     'ldap' => 'displayName',

  104.   ),

  105. );

  106. 

  107. Testing

  108. =======

  109. 

  110. The simpletests provided with this module automatically configure themeselves

  111. to use the active configuration in order to perform a real-world test against

  112. your real LDAP server.

  113. 

  114. THIS MEANS THAT DATA WILL BE ADDED/DELETED ON YOUR REAL LDAP SERVER!

  115. 

  116. The simpletests only operate against entries it creates, but in the event of a

  117. failure, the test cannot clean up after itself. If you are testing a specific

  118. configuration, it is recommended to run the test against a development or

  119. staging directory first.