-
-
Notifications
You must be signed in to change notification settings - Fork 532
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Create Ldap user directly at Teampass DB #1541
Comments
Any help? The main issue seems to be the ldap user doesn't exist in advance in the Teampass DB. Is there any configuration to say to Teampass to create the ldap user in the first login if it doesn't exist in the DB? Thanks. |
I have read this issue: At v2.1.25 version was implemented a feature to create a user in Teampass DB directly when the user who tries to log in doesn't exist within DB. it seems at v.2.1.26 it is not implemented? Thanks. |
I have set "Teampass local users only" off in"LDAP settings" and when I try to access with ldap user which doesn't exist in Teampass DB it gets an infinite load looping, firebug says : 500 Internal Server Error but not errrors. At the logs server: [Tue Nov 01 11:51:10.122572 2016] [:error] [pid 29913] [client X.X.X.X:22602] PHP Fatal error: Call to a member function user() on null in /var/www/html/teampass/sources/identify.php on line 395, referer: https://xxxxx/index.php?page=items Thanks. |
I was using "posix-search" instead of Active Directory so you forget above details despite thisI am getting same load looping but without any error this time when I tried to log in with ldap user which doesn't exist in Teampass DB..:-( |
The issue here seems to be that user information for new users comes from $adldap. This variable is never defined in sources/identify.php when set to posix-search because the definition doesn't occur in the conditional block for: When ldap_type is just 'posix', the variable is set, but user information is populated with However, this sends the wrong type of query to an openldap server. What I see is This should simply pull the needed attributes from the dn which was already found, and which shows up in the debug file. I haven't read enough about the AD library used here to know if a different function could be used, nor do I know why the posix ldap stuff is mixed in with the AD code, so I'm not sure what the best fix is. For the meantime, I've worked around it by using posix-search and patching the code like this:
|
Steps to reproduce
Expected behaviour
Ldap login should work.
Teampass should create ldap user in the Database at the first ldap login attempt.
Actual behaviour
Ldap login doesn't work. It seems to be because of ldap user doesn't exist in database.
If ldap user doesn't exist in Teampass DB in advanced, Ldap login doesn't work.
If ldap user exists in Teampass DB, Ldap login works.
Server configuration
Operating system:Centos7
Web server: Apache 2.4
Database: mysql 5.7
**PHP version:**PHP 5.6
Teampass version: v.2.1.26 (final release)
Updated from an older Teampass or fresh install: Fresh Install
Client configuration
**Browser:**Chrome Version 53.0.2785.143 (64-bit)
Operating system: Mac
Logs
LDAP log
Webserver log
No errors.
The text was updated successfully, but these errors were encountered: