[Plugin: LDAP LPRM] Feature request

  • johnmaher443

    (@johnmaher443)


    12 years, 1 month ago

    We are making great use of your plugin. Thank you!

    There is a feature I would like to request; my PHP skills and understanding of LDAP are not so good. This request is in response to the discovery of a problem when using your plugin in conjunction with either the More Privacy Options plugin or the Network Privacy plugin (both exhibit the problem, but I’ll explain with the More Privacy Options plugin).

    After several months of using the LDAP LPRM plugin with great results, I added the More Privacy Options plugin to my multi-site specifically to allow site admins control over who could access their site. Both plugins seemed to work fine together; existing users in WordPress who were not added to a specific site were restricted from accessing the site. However, I discovered (by accident) that if an LDAP user who has never logged into the multi-site (i.e., they are a new user, not an existing user according to WordPress) logs into a particular site that is set to restrict access only to specific users (of course, that user would not have been added to the site, because they are entirely new), the restrictions set by the More Privacy Plugin are ignored. The LDAP user’s account in WordPress is created and they are added as a user of the restricted site.

    I don’t see a way around this using the More Privacy Options plugin. The user is successfully authenticating using LDAP and the account is created in WordPress. Because their first loggin is taking place at a restricted site, the restricted site is added to their list of associated sites. Now that they are a WordPress user (not just an LDAP user), they are prevented from accessing the next restricted site for which they have not been granted access (i.e., the More Privacy Options plugin is now doing its job), but they unfortunately have access to a restricted site that they should not be able to access.

    So, because membership in an LDAP group could be used instead of the More Privacy Options plugin, would you be willing to add the ability to use an LDAP group to restrict access to a site?

    Thanks.

    John

    http://wordpress.org/extend/plugins/ldap-login-password-and-role-manager/

  • The topic ‘[Plugin: LDAP LPRM] Feature request’ is closed to new replies.