EPrints Technical Mailing List Archive

Message: #06531


< Previous (by date) | Next (by date) > | < Previous (in thread) | Next (in thread) > | Messages - Most Recent First | Threads - Most Recent First

Re: [EP-tech] Antwort: Re: ADFS login?


Hi Andrew (and others),

I have added a test script for LDAP to the wiki page (under LDAP testing).  Looking at the user_login.pl already on the wiki page, the most likely issue is getting the $base and $dn variables and the filter for the LDAP search set correctly.

Regards

David Newman


On 24/05/2017 14:13, Andrew Beeken wrote:

I think the main problem is my perl knowledge is fairly minimal so I’m not really sure how I’d go about testing this. I’ve got all the LDAP login criteria from other projects and I just plugged them into the script here: https://wiki.eprints.org/w/LDAP#LDAP_Authentication_with_On-Demand_Creation_of_Users

 

Any advice you can give to getting a manual test working on this would be great J

 

From: eprints-tech-bounces@ecs.soton.ac.uk [mailto:eprints-tech-bounces@ecs.soton.ac.uk] On Behalf Of Denis Pitzalis
Sent: 24 May 2017 13:49
To: Eprints Tech Mailing List <eprints-tech@ecs.soton.ac.uk>
Subject: Re: [EP-tech] Antwort: Re: ADFS login?

 

Hi all,

 

I have a LDAP installation up and running that you can check here: http://en.unesco.org/mediabank

LDAP works like charm (Thanks Tim :) ) and I am planning now to move to ADFS. Unfortunately LDAP supports a lot of scenarios did you first test your LDAP with a simple perl script? If you get this done, you are at 80% of the work. I am planning also to share my devs on github, so stay tuned!

 

Denis

 

On Wed, May 24, 2017 at 2:42 PM, Andrew Beeken <anbeeken@lincoln.ac.uk> wrote:

Thanks Martin,

 

I’ve had a look at getting this working using a self-certified SSL on my dev box but it doesn’t seem to be too happy. To the group – has anyone got this running? Does anyone actually have a working LDAP/ADFS login implementation? I know our EPrints currently uses a system however it is this component that I’m trying to find a more graceful solution for.

 

From: eprints-tech-bounces@ecs.soton.ac.uk [mailto:eprints-tech-bounces@ecs.soton.ac.uk] On Behalf Of martin.braendle@id.uzh.ch
Sent: 19 May 2017 07:12
To: eprints-tech@ecs.soton.ac.uk
Subject: [EP-tech] Antwort: Re: ADFS login?

 

Andrew,

this is on LDAP, but it might be a beginning: https://wiki.eprints.org/w/LDAP

Cheers,

Martin

Inactive hide details for Andrew Beeken
                      ---18/05/2017 17:02:06---Any thoughts on this? I
                      am importing users from our live systeAndrew Beeken ---18/05/2017 17:02:06---Any thoughts on this? I am importing users from our live system which have usernames and ID numbers

Von: Andrew Beeken <anbeeken@lincoln.ac.uk>
An: "eprints-tech@ecs.soton.ac.uk" <eprints-tech@ecs.soton.ac.uk>
Datum: 18/05/2017 17:02
Betreff: Re: [EP-tech] ADFS login?
Gesendet von: eprints-tech-bounces@ecs.soton.ac.uk





Any thoughts on this?
 
I am importing users from our live system which have usernames and ID numbers matching our active directory so I’m hoping that it shouldn’t be too hard to authenticate. My ideal process would be:
 

·         User logs in –
·         Are they in the user table?

o   If not, add them and authenticate
o   If so, authenticate

 
That would enable our creator browse to pick them up after a single log in, however we would probably have to figure out a process for removing users after they leave or deactivating them somehow. The big question is, of course, if their username is reused (which I’m told shouldn’t happen!)
 
From: eprints-tech-bounces@ecs.soton.ac.uk [mailto:eprints-tech-bounces@ecs.soton.ac.uk] On Behalf Of Andrew Beeken
Sent:
 15 May 2017 16:42
To:
 eprints-tech@ecs.soton.ac.uk
Subject:
 [EP-tech] ADFS login?

 
Hello all!
 
Another thing I want to do is introduce an ADFS or similar based login system into the new migration of EPrints. As I mentioned, all users I’m migrating over have usernames and ID number that are relative to our internal systems, so I’d like to be able to authenticate logins against those systems and create new users where applicable. Again, is there any known methods (plugins etc) out there for doing this?
 
Ta!
Andrew

The University of Lincoln, located in the heart of the city of Lincoln, has established an international reputation based on high student satisfaction, excellent graduate employment and world-class research.


The information in this e-mail and any attachments may be confidential. If you have received this email in error please notify the sender immediately and remove it from your system. Do not disclose the contents to another person or take copies.

Email is not secure and may contain viruses. The University of Lincoln makes every effort to ensure email is sent without viruses, but cannot guarantee this and recommends recipients take appropriate precautions.

The University may monitor email traffic data and content in accordance with its policies and English law. Further information can be found at:
http://www.lincoln.ac.uk/legal.*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/
*** EPrints developers Forum: http://forum.eprints.org/


*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/
*** EPrints developers Forum: http://forum.eprints.org/



 

--



*** Options: http://mailman.ecs.soton.ac.uk/mailman/listinfo/eprints-tech
*** Archive: http://www.eprints.org/tech.php/
*** EPrints community wiki: http://wiki.eprints.org/
*** EPrints developers Forum: http://forum.eprints.org/


Virus-free. www.avg.com