Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
sogodovecotldapandgroups [2011/07/07 11:27] – Correct link markup jimsogodovecotldapandgroups [2016/02/05 12:44] (current) – Fix Python script. jim
Line 37: Line 37:
 So in Dovecot configuration I set up a post-login script: So in Dovecot configuration I set up a post-login script:
  
-  service imap { +<code> 
-    executable = imap imap-postlogin +service imap { 
-  } +  executable = imap imap-postlogin 
-  service imap-postlogin { +}
-    # all post-login scripts are executed via script-login binary +
-    executable = script-login -d /etc/dovecot/acl_groups.py+
  
-    # the script process runs as the user specified here (v2.0.14+): +service imap-postlogin { 
-    user = $default_internal_user +  # all post-login scripts are executed via script-login binary 
-    # this UNIX socket listener must use the same name as given to imap executable +  executable = script-login -d /etc/dovecot/acl_groups.py 
-    unix_listener imap-postlogin { + 
-    }+  # the script process runs as the user specified here (v2.0.14+): 
 +  user = $default_internal_user 
 +   
 +  # this UNIX socket listener must use the same name as given to imap executable 
 +  unix_listener imap-postlogin {
   }   }
 +}
 +</code>
      
 We currently have ''Maildir''s in the users home directory. ''script-login -d'' runs the after login ''imap'' process as the user. The script ''acl_groups.py'' fishes out the group memberships from LDAP, sets up ''ACL_GROUPS'' and chains to the rest of the IMAP session. Dovecot passes the location of the program to run for the rest of the session on the command line. We currently have ''Maildir''s in the users home directory. ''script-login -d'' runs the after login ''imap'' process as the user. The script ''acl_groups.py'' fishes out the group memberships from LDAP, sets up ''ACL_GROUPS'' and chains to the rest of the IMAP session. Dovecot passes the location of the program to run for the rest of the session on the command line.
Line 78: Line 82:
                    ['memberOf'])                    ['memberOf'])
   for dn, entry in res:   for dn, entry in res:
-      for g in entry['memberOf']: +      try: 
-          # Returns 'cn=All UK staff,ou=Groups,dc=example,dc=com' etc. +          for g in entry['memberOf']: 
-          # Fish out 'All UK staff' as group name. +              # Returns 'cn=All UK staff,ou=Groups,dc=example,dc=com' etc. 
-          groups.append(g.split(',', 1)[0][3:]) +              # Fish out 'All UK staff' as group name. 
-  +              groups.append(g.split(',', 1)[0][3:]) 
 +      except KeyError: 
 +          pass    # User in no groups. 
 +          
   os.environ["ACL_GROUPS"] = ",".join(groups)   os.environ["ACL_GROUPS"] = ",".join(groups)
   try:   try:
 
sogodovecotldapandgroups.1310038064.txt.gz · Last modified: 2011/07/07 11:27 by jim
Show page Recent Changes Backlinks
Old revisions Admin Sitemap Back to top
chimeric.de = chi`s home Creative Commons License Valid CSS Driven by DokuWiki do yourself a favour and use a real browser - get firefox!! Recent changes RSS feed Valid XHTML 1.0