[rt-users] Multiple value match for attr_match_list

Hossein Rafighi Hossein.Rafighi at triumf.ca
Tue Sep 13 18:18:16 EDT 2011 

Hi Kevin,

Much appreciated. Using alternate email addresses instead of alternate 
uids sounds even better. Is this url: 
http://requesttracker.wikia.com/wiki/AutoCreateAndCanonicalizeUserInfo 
what I need? If not, can you please point me to a page where 
step-by-step instruction is.

Again, many thanks...
Hossein

On 9/13/2011 2:42 PM, Kevin Falcone wrote:
> On Tue, Sep 13, 2011 at 12:04:44PM -0700, Hossein Rafighi wrote:
>> Hi all,
>>
>> We have RT4.0 with RT::Authen::ExternalAuth. In attr_match_list
>> section we have:
>> 'attr_match_list'  =>  [    'Name',
>>                                         'EmailAddress',
>>                                         'RealName',
>>                                     ],
> You really don't want RealName there, otherwise
> RT::Authen::ExternalAuth will disallow two people named Bob Smith.
>
>> 'attr_map'            =>   {   'Name' =>  'uid',
>>                                          'EmailAddress' =>  'mail',
>>                                          'RealName' =>  'cn',
>>                                      }
>>
>> However, on our ldap (openldap) a typical user has a uid and cn. For
>> instance, my info on the ldap is:
>> dn: uid=hossein,ou=People,o=TRIUMF
>> uid: hossein
>> cn: Hossein Rafighi
>> sn: Rafighi
>> mail: hossein at triumf.ca
>> mail: Hossein.Rafighi at triumf.ca
>> givenName: Hossein
>>
>> Is it possible to alter the attr_match, attr_map, or any other
>> attribute in RT to authenticate based on uid or cn, and not just
>> uid? I tried changing various settings, but to no avail.
> You'd have to extend the module to use more than just the Name in the
> query it runs for DN.  There's a branch in the repo for refactoring
> some of that code, but it concentrates on alternate email addresses
> not alternate uids.  It may make doing what you want easier though.
>
> -kevin
>
>
-- 
   _____  _____   _____  _   _  _   _  ____ Hossein Rafighi
  |_   _||  _  \ |_   _|| | | || \_/ ||  __|TRIUMF, 4004 Wesbrook Mall
    | |  | |_|  )  | |  | | | ||     || |__ Vancouver BC, CANADA, V6T 2A3
    | |  |  _  /   | |  | \_/ || \_/ ||  __|Voice: (604) 222-1047
    | |  | | \ \  _| |_ |     || | | || |   Fax:   (604) 222-1074
    |_|  |_|  \_\|_____| \___/ |_| |_||_|   Website: http://www.triumf.ca

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20110913/1f199e56/attachment.htm>

More information about the rt-users mailing list