Em 17-08-2011 02:27, Marius Mårnes Mathiesen escreveu:
On Tue, Aug 16, 2011 at 11:53 PM, [email protected]
<mailto:[email protected]> <[email protected]
<mailto:[email protected]>> wrote:
I'm setting up Gitorious internally within a company. We need to
hook up Gitorious to LDAP. I know this problem has been raised
several times. I'm just looking for some additional information,
if there is any out there. I also understand that LDAP support is
something that some of the Gitorious devs are working on, but it
won't be ready for a while. I'm looking for solutions that can be
implemented now.
One of the obvious solutions is to set up an OpenID provider
backed by the LDAP server. I did some searching and found
OpenID-LDAP (http://www.openid-ldap.org/). There is also a post
<https://groups.google.com/d/msg/gitorious/WV18wji7z8s/DfHojg4Wv0MJ> here
in the group about using a ruby gem to hook up OpenID and LDAP.
Does anyone have experience using either of these? Is there
anything else that can easily bridge OpenID and LDAP?
I have also seen some people talking about configuring httpd or
sshd
<http://serverfault.com/questions/133090/using-ldap-as-auth-method-for-git-repositories>
to authenticate against LDAP somehow. This seems to be a solution
for authentication with regard to doing a git-push, though. And
since Gitorious uses a custom git daemon (at least, that is my
understanding) I don't know how that would work.
What have you guys used to hook up to LDAP? Which specific
technologies? How much did you have to roll your own solution to
this problem?
We have set up LDAP authentication for a client, they're running this
right now. It's based on this branch:
https://gitorious.org/~zmalltalker/gitorious/zmalltalker-clone/commits/ldap_work_in_progress
<https://gitorious.org/%7Ezmalltalker/gitorious/zmalltalker-clone/commits/ldap_work_in_progress> -
more or less exactly that branch in fact.
We haven't integrated that branch with master, however, and that is
because Rodrigo's work on adding Devise to Gitorious will introduce a
quite different way of integrating authentication in Gitorious. So
while the above branch is not official, it does work.
Sorry about the delay Marius, but I guess I'll be able to start working
on Gitorious again this weekend after this hurry days due to my job
change. Things are starting to get normal again :)
Best,
Rodrigo.
--
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
