[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldap with squid auth helper

To: openldap-technical@openldap.org
Subject: ldap with squid auth helper
From: Gerardo Herzig <gherzig@fmed.uba.ar>
Date: Fri, 04 Jun 2010 17:05:26 -0300
User-agent: Thunderbird 2.0.0.6 (X11/20070801)

Hi all. Im triyng to use squid with the squid_ldap_group auth helper.

The schema looks like
o=Company
    |
     -Groups
         |-ProxyUsers
    |-Managers
    |-Sales

Managers and Sales are OrganizationalUnit, ProxyUsers is GroupofUniqueNames

Each entry of Managers and Sales inherits from PosixAccount and
InetOrgPerson

ProxyUsers entry for the user foo is:
UniqueMember: uid=foo,ou=Managers,o=Company
UniqueMember: uid=anotherfoo,ou=Sales,o=Company

Inside the ProxyUsers can be people from Managers, Sales, and so.
Im faliling to test squid_ldap_group from command line (i think the
filters part)

1) Is there a way to test if the user foo is part of the ProxyUsers group?

2) It is possible to tell squid_ldap_group to look for uid=foo in
Manager AND Sales, and if there is one try to use it?
Like if the filter could be "(uid=foo) _AND_ (ou=Managers _OR_ ou=Sales)"?

I hope to be clear with the question.
Thanks!

Gerardo

Follow-Ups:
- Re: ldap with squid auth helper
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: input error=-2
Next by Date: RE: how to get DIT structure info
Index(es):
- Chronological
- Thread