web development and photography
symfony and LDAP
I’ve recently been looking at the essential (ie why isn’t it included in the core?) symfony plugin sfGuard. It offers are really nice, simple way of building a simple user, role, and permissions system into your symfony app.
The great thing is that with a little tweaking (documentation not great) you can add a custom LDAP lookup class, which overrides the standard built in user password lookup. Ok, you need to write your own class, or use a 3rd party one. But the basics of LDAP are built into php5, and it’s really not hard to do.
One problem I had was that sfGuard is designed to make it impossible to do an LDAP lookup and an internal check for a superadmin user. The reasons are a little esoteric, and have to do with mixing static and non-static contexts. Basically, the only option is to change one of the sfGuard library classes. Specifically sfGuardPlugin/lib/model/plugin/PluginsfGuardUser.php
Adding in this fixed things:
if ($callable = sfConfig::get('app_sf_guard_plugin_check_password_callable_both'))
{
$result = false;
$result = $this->checkPasswordByGuard($password);
if (!$result)
{
$result = call_user_func_array($callable, array($this->getUsername(), $password));
}
return $result;
}
which meant I had to use a special ‘check_password_callable_both’ option in the app.yml file. But at least this way it did checkPasswordByGuard() first, and then tried my added in LDAP class second.
Is there another way of doing this? I don’t know. Probably. But this seemed to work for me, and perhaps could be included in the sfGuard plugin by default. I guess I should get in touch with the developers to check…
| Print article | This entry was posted by admin on May 1, 2008 at 22:34 GMT, and is filed under symfony. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site. |
No trackbacks yet.
Building augmented reality layars
about 1 month ago - No comments
Layar is a free augmented reality (AR) app for iPhone and Android. Unlike other apps which fulfil a specific AR need (from finding bars near you selling Stella, to shooting your friends with lasers) Layar opens things up to let developers build their own AR views and run them in the Layar AR “browser”. It looks
Flomo iphone app
about 1 year ago - No comments
A few weeks ago I decided to start playing around with iPhone app development. It would, I thought, be a relatively straightforward thing. Even small children could do it. But what to choose as a test project? Perhaps something stupid that made some kind of farty noise each time you shook your iPhone? Nah… build
IWMW2009
about 1 year ago - No comments
The Institutional Web Management Workshop (IWMW 2009) will be held at the University of Essex from Tuesday 28th to Thursday 30th July 2009. This is generally a great chance to catch up with what’s going on in the Higher Education web world. Oh and there’s great food and lots of booze too, not that I’m
Beginning iPhone Development: Exploring the iPhone SDK
about 1 year ago - 2 comments
iPhone development isn’t really all that much fun, but the end results can be very cool. Dave Mark and Jeff LaMarche have written a really nice introduction which makes the whole process seem just about manageable. Almost cool and quirky even. Importantly, it successfully captures the key to the iPhone’s success as a development platform:
Drupal in perspective
about 1 year ago - No comments
Drupal prides itself on its community aspect. And so it should as a truly open source system. One of the good things to come out of this is the principle that dissenting voices should be given a platform. Hopefully what they say gets taken on board too. A talk titled ‘Why I hate Drupal’ at
Pro Drupal Development 2nd Edition by John K. VanDyk
about 1 year ago - No comments
If you want to get at all serious about taking Drupal beyond a simple installation, Pro Drupal Development is going to be a massive help to you. If you’re anything like me you’ll come back to it again and again for reference and to try out some new ideas. It covers all kinds of development areas such
Using Drupal by Angela Byron
about 1 year ago - No comments
Using Drupal is a great little book if you’re just starting out with Drupal, and want to know which modules could be useful for you. If you’re getting into true development stuff and want to play around with Drupal a bit more, the excellent Pro Drupal Development by John VanDyk would be a much better choice.
wordpress mu XSRF
about 1 year ago - 2 comments
Cross-site request forgery (XSRF). It’s something that’s becoming a big issue in internet security, and yet is still relatively poorly understood by many developers. If you don’t already know what it is, you can find an excellent introduction in wikipedia: http://en.wikipedia.org/wiki/XSRF In a nutshell, anything on your website is a security risk if it lets
Review of Panic’s Coda – One-Window Web Development for Mac OS X
about 1 year ago - 11 comments
I’ve recently been trialling Coda, Panic’s web development environment for Mac OSX. It currently costs $99 (about £65 at current rates) per licence, and offers a fully-featured 15-day trial before you burn your money. The version I’m looking at here is 1.6.2. Coda sells itself as offering a complete environment for all-round web developers: somewhere
Drupal as an enterprise CMS?
about 1 year ago - 1 comment
I’ve been looking a lot recently at Drupal not just as an open source CMS, but as a viable enterprise level CMS. Despite my earlier misgivings I think Drupal has a lot going for it, and it may be that over the next couple of years it will become a much bigger force in
about 1 year ago
I too am having a similar problem. Basically if you create your own custom LDAP class – you can’t use any private class attributes – because all your methods must be static.
So in my custom ldap class I have my own methods – getEmail, getPhone etc… but have to pass the ldap objects every time… bit silly, when I should make them private members/attributes.
Did you end up submitting a feature request/bug for this? Maybe we should do it…