LDAP Authentication

Steps to reproduce

Steps to reproduce:
1. Configure multiple LDAP files
2. Login with some User ID

Actual Results:

Nothing happens. No hits on my LDAP server.

Expected Results:

LDAP should authenticate the user and proceed to find ROLES


Rubén Pérez
January 15, 2016, 1:50 PM

To this day, LDAP cannot still be used in Opencast as a source for authentication (only for authorization alongside a CAS server).

I have created a working solution for this, which kind of works around the existing classes to deal with LDAP, but at least does the job in a standard way (sort of).

I have filled the pull request #777 against the version r/1.6.x, which will then be merged with r/1.7.x . The version 2.1 will have to wait for a little longer --LDAP requires certain runtime dependencies that I'm not sure how to setup in Karaf --but I'll get there.

Greg Logan
September 25, 2013, 3:14 PM

The general idea is valid for 1.4, yes. Some of the files (notably config.properties and system.properties) have been changed since those docs were written, but other than that I needed relatively little modification to get things working. It is indeed CAS for authn and LDAP for authz, which I suppose is not what this ticket was actually about. I don't know of any docs regarding LDAP authn.

Olav Bringedal
September 25, 2013, 7:32 AM

is this valid for 1.4 as well? And it seems to me this is cas for authenication and ldap for authorization. Is that a correct observation?

Greg Logan
September 24, 2013, 8:12 PM

https://opencast.jira.com/wiki/display/MH/University+of+Saskatchewan+CAS+and+LDAP+integration is what you're looking for I suspect. They're a tad out of date, but the parts that are out of date are fairly well documented within the files themselves (system.properties springs to mind).

Olav Bringedal
September 24, 2013, 12:24 PM

sorry, but i'm unable to find the docs for this. can anyone direct me?

Fixed and reviewed
Your pinned fields
Click on the next to a field label to start pinning.


Rubén Pérez


Hank Magnuski


Non Functioning

Tags (folksonomy)