Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Anyone aware of a secure document storage solution which can manage document access based on ldap group membership? I was loooking at adding some sort of view access protection plugin to a mediawiki, but they all are extremely keen to point out that they are essentially hacks, and it's not designed for restricting view access, and as i'm looking for someone where to store enterprise router passwords...
Dumb question. When a person logs into the wiki, is the web server instance running as that user?
Is nsswitch involved, or could it be? Or can you just use libnss_ldap for logging in?
If so couldn't you put an "ldap" entry in the /etc/nsswitch.conf's "group " line and then use facl's to control group access to the files themselves.
thanks, but it's issues with the user and group management within mediawiki which prevent me using it, not the apache instance it's running under. need things like anonymous access can read this dynamic page, logged in users can read another, users in a certain group can read a third. mediawiki would need to handle all that itself. I could easily just stick it on our active directory based shared file systems, but it'd be advantageous to have a fairly simple dedicated secure document store closely linked to the wiki.
Last edited by acid_kewpie; 12-08-2007 at 06:42 AM.
I love the way the forums always seem to have related threads on the new post page! http://www.linuxquestions.org/questi...e-tree-605304/ - I know naff all about these things, but does knowledge Tree do what you need? It can use LDAP and seems to tick the rest of the boxes too.
hasn't actually helped though... looks like i either change wiki, probably to dokuwiki which has much better enterprise features it seems, or just stick with generic windows shares for confidential data.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.