Development Discussion Board

This goes directly against the idea of LDAP. Why have a centralized DB with user accounts if you allow someone to create new accounts which potentially circumvents LDAP?

No one is suggesting that both types of accounts would be treated the same. LDAP users could have permission scheme X and non ...

Is ldap used as a means to authenticate the registration or does the ldap database username become the board username.

It can easily go either way, programmatically. I would rather it be an option, say to "specify an LDAP attribute that will be read as a users' displayed username" or "let the ...

In which case we'll provide the framework and those who need to use it can modify the code as they may require. Because spending significant amounts of time on limiting and controlling what can and cannot be done with LDAP is well down our priority list.

I understand completely. I did not know ...

Wouldn't LDAP be easier implimented as follows:

- User registers at board
- User enters groups and picks "LDAP Users" (if LDAP is enabled)
- User enters LDAP details and is added to that group
- User gains all permission of the LDAP group as defined by the admin

To go with that if groups allow ...

Apparently there is a limit on how often I can edit a reply :(

What I meant to say at the end was:

If phpbb is going to allow emailing a users LDAP credentials to them it better be an option to ONLY allow the email to be sent to an admin-defined attribute in LDAP. It's very common for LDAP entries ...

I think mondain means that in the email sent out upon registration, correct?

If so, the language files (? not sure if their location is changed in 2.2 ?) can be changed so that it doesn't email them their password.

That raises a good question: if you're using LDAP auth, do you check the auth ...

Also, for the sake of different encryption schemes and security, it should be an option to not let phpbb email a users password to them.

That represents the basic minimum of information to have php talk to an LDAP directory server. Thank you for posting it here for the benefit of readers who arent beta testing 2.2.

In my above post where I mention phpbb should not let users change ldap information, if all phpbb is using ldap for is ...

I'd like to get some info and discussion going regarding the LDAP integration thats going into 2.2.

You generally have 2 categories of reasons why you have an LDAP userbase:

1) you have a small to medium userbase across a small number of machines using LDAP auth, such as a small ISP or small ...