http://mu.wordpress.org/forums/ WordPress MU Forums Topic: MU, LDAP and XMLRPC en Sat, 25 May 2013 02:45:16 +0000 http://mu.wordpress.org/forums/topic/7099#post-46065 Mon, 10 Mar 2008 22:22:37 +0000 rharrison 46065@http://mu.wordpress.org/forums/ <p>Do we know when to expect the fix to be in the upstream MU code? </p> http://mu.wordpress.org/forums/topic/7099#post-42881 Fri, 04 Jan 2008 12:30:06 +0000 PhoenixRises 42881@http://mu.wordpress.org/forums/ <p>have submitted a patch into wordpress trac. </p> http://mu.wordpress.org/forums/topic/7099#post-42880 Fri, 04 Jan 2008 10:55:37 +0000 PhoenixRises 42880@http://mu.wordpress.org/forums/ <p>agreed. </p> http://mu.wordpress.org/forums/topic/7099#post-42860 Fri, 04 Jan 2008 02:33:09 +0000 JanBrasna 42860@http://mu.wordpress.org/forums/ <p>Actually the same applies to plain vanilla WP, see <a href="http://trac.wordpress.org/browser/trunk/wp-includes/user.php#L16" rel="nofollow">http://trac.wordpress.org/browser/trunk/wp-includes/user.php#L16</a> - it might be better to submit it for WP trunk and have it then re-applied to WPMU from there.</p> <p>Opinions? </p> http://mu.wordpress.org/forums/topic/7099#post-42855 Thu, 03 Jan 2008 23:53:15 +0000 PhoenixRises 42855@http://mu.wordpress.org/forums/ <p>Will look into it in the morning. </p> http://mu.wordpress.org/forums/topic/7099#post-42846 Thu, 03 Jan 2008 22:46:58 +0000 andrea_r 42846@http://mu.wordpress.org/forums/ <p>you'll have to submit it as a patch first and see if donncha will take it. That's the faastest way, I think. </p> http://mu.wordpress.org/forums/topic/7099#post-42842 Thu, 03 Jan 2008 21:44:21 +0000 JanBrasna 42842@http://mu.wordpress.org/forums/ <p>That sounds good. Can anyone from the devs confirm that it's okay so that it could be submitted as a patch? </p> http://mu.wordpress.org/forums/topic/7099#post-42692 Mon, 31 Dec 2007 14:18:45 +0000 PhoenixRises 42692@http://mu.wordpress.org/forums/ <p>JanBrasna makes a good point. No, as far as I know there is no pluggable function for this at the moment (but I could have missed it), however, wp_login is pluggable....</p> <p>According to the code comments user_pass_ok is only used in xmlrpc.php so by editing one line in the function login_pass_ok (xmlrpc.php) we get the same functionality for less work.</p> <p><code>function login_pass_ok($user_login, $user_pass) {<br /> <strong>if (!wp_login($user_login, $user_pass)) {</strong><br /> $this-&gt;error = new IXR_Error(403, __('Bad login/pass combination.'));<br /> return false;<br /> }<br /> return true;<br /> }</code></p> <p>Perhaps that should be passed back upstream? Making this change means user_pass_ok can be removed from user.php entirely, and when a blog is XML-RPC enabled no files would need changed, it will automatically use the current authentication method whether its the default WP auth, LDAP or anything else that overrides wp_login. </p> http://mu.wordpress.org/forums/topic/7099#post-42688 Mon, 31 Dec 2007 00:12:40 +0000 JanBrasna 42688@http://mu.wordpress.org/forums/ <p>Is there a will to make the auth mechanism pluggable? Or there's already a way, but just unnoticed? </p> http://mu.wordpress.org/forums/topic/7099#post-42670 Sun, 30 Dec 2007 10:43:53 +0000 PhoenixRises 42670@http://mu.wordpress.org/forums/ <p>So, in ~/wp-includes/user.php replace the function user_pass_ok with the following:</p> <pre><code>include_once( ABSPATH . &quot;wp-content/mu-plugins/ldap/lib/ldap_ro.php&quot; ); function user_pass_ok($user_login, $user_pass) { $ldapServerAddr = get_site_option(&quot;ldapServerAddr&quot;); $ldapServerOU = get_site_option(&quot;ldapServerOU&quot;); $ldapServerCN = get_site_option(&quot;ldapServerCN&quot;); $ldapServerPass = get_site_option(&quot;ldapServerPass&quot;); $ldapServerPort = get_site_option(&quot;ldapServerPort&quot;); $ldapEnableSSL = get_site_option(&quot;ldapEnableSSL&quot;); $ldapString = &quot;$ldapServerAddr:$ldapServerOU:$ldapServerCN:$ldapServerPass:$ldapServerPort:$ldapEnableSSL&quot;; $server = new LDAP_ro($ldapString); $user_data = null; if($server-&gt;Authenticate($user_login,$user_pass, $user_data) == 0) return true; return false; }</code></pre> <p>That _should_ work. </p> http://mu.wordpress.org/forums/topic/7099#post-42669 Sun, 30 Dec 2007 08:50:04 +0000 dubaidan2 42669@http://mu.wordpress.org/forums/ <p>Hi,</p> <p>Could you post the code in full. Would really help here with same problem.</p> <p>Thanks </p> http://mu.wordpress.org/forums/topic/7099#post-42606 Fri, 28 Dec 2007 16:55:30 +0000 PhoenixRises 42606@http://mu.wordpress.org/forums/ <p>You were getting that error because I messed up, I basically skimmed over the plugin source to get the code that would just authenticate which is why I said it might not be perfect :P. </p> <p>Passing a variable that is set to null as opposed to just passing in null should fix that problem. It _should_ require the third parameter set to actually work.</p> <pre><code>$user_data = null; if($server-&gt;Authenticate($user_login,$user_pass, $user_data) == 0)...</code></pre> <p>However, if you've got it working then I expect you don't need to worry about it. </p> http://mu.wordpress.org/forums/topic/7099#post-42590 Fri, 28 Dec 2007 13:44:55 +0000 jsox78 42590@http://mu.wordpress.org/forums/ <p>Thanks for posting the code to get this working. I was able to finally authenticate against xmlrpc with BlogJet. I just wanted to let you know that I hit one snag and was wondering what was happening.</p> <p>When taking the code as is, I get an error about not being able to pass variable 3 in line 34. In my user.php file this is refering to the null value being passed by the if statement. I am not sure why this value is in the string, but after removing it I no longer receive the error.</p> <p>Is the null value needed? If so, any idea why I would be getting that error? </p> http://mu.wordpress.org/forums/topic/7099#post-42585 Fri, 28 Dec 2007 01:41:04 +0000 PhoenixRises 42585@http://mu.wordpress.org/forums/ <p>Please keep in mind that this may not work straight off and may need some tweaking, however, this should be pretty close.</p> <p>This is assuming that the LDAP settings you have specified in "Site Admin" are correct and that the plugin is working. In ~/wp-includes/user.php edit the function user_pass_ok (you may wish to take a backup of the original version) to read as follows:</p> <pre><code>function user_pass_ok($user_login, $user_pass) { global $cache_userdata; $ldapServerAddr = get_site_option(&quot;ldapServerAddr&quot;); $ldapServerOU = get_site_option(&quot;ldapServerOU&quot;); $ldapServerCN = get_site_option(&quot;ldapServerCN&quot;); $ldapServerPass = get_site_option(&quot;ldapServerPass&quot;); $ldapServerPort = get_site_option(&quot;ldapServerPort&quot;); $ldapEnableSSL = get_site_option(&quot;ldapEnableSSL&quot;); $ldapString = &quot;$ldapServerAddr:$ldapServerOU:$ldapServerCN:$ldapServerPass:$ldapServerPort:$ldapEnableSSL&quot;; $server = new LDAP_ro($ldapString); if($server-&gt;Authenticate($user_login,$user_pass, null) == 0) return true; return false; }</code></pre> <p>You will also need to add the following to the top of the same file:</p> <pre><code>include_once(ABSPATH . &quot;wp-content/mu-plugins/ldap/lib/ldap_ro.php&quot;);</code></pre> <p>Or replace with the correct path for your install of the plugin.</p> <p>Hope that helps. </p> http://mu.wordpress.org/forums/topic/7099#post-42582 Thu, 27 Dec 2007 19:52:45 +0000 jsox78 42582@http://mu.wordpress.org/forums/ <p>Thanks for the response, it is encouraging to know that someone at least has this working. I am currently using the version 1.3 of the WPMU LDAP plugin located here - <a href="http://sourceforge.net/projects/wpmu-ldap/" rel="nofollow">http://sourceforge.net/projects/wpmu-ldap/</a>.</p> <p>Any further assistance you can provide is most appreciated. </p> http://mu.wordpress.org/forums/topic/7099#post-42502 Tue, 25 Dec 2007 16:33:14 +0000 PhoenixRises 42502@http://mu.wordpress.org/forums/ <p>I have roughly the same set up, although after I couldn't get an LDAP plugin working I wrote a quick one of my own. </p> <p>2 things I found. First, make sure that xml-rpc is enabled on the blog(s) you want to post on, do this via (Site Admin-&gt;Blogs-&gt;Edit).</p> <p>Second, xmlrpc.php doesn't use any overridden authentication, it simply checks the given user name and password against the user name and password in its user table. Therefore, it needs hacked a bit. There are 2 options. Either, posting a link to the LDAP plugin your using so that I can say what you need to change, or have a look in ~/wp-includes/user.php , the function user_pass_ok and alter it to resemble the authentication used in the plugin. </p> http://mu.wordpress.org/forums/topic/7099#post-42376 Thu, 20 Dec 2007 16:07:33 +0000 jsox78 42376@http://mu.wordpress.org/forums/ <p>I am currently looking to use test a few off line blog editors with a pilot installation of WordPress MU that I installed for my current employer.</p> <p>At this point in time I am trying to connect BlogJet, w.blogger and BlogDesk to the WordPress MU installation via the xmlrpc.php.</p> <p>All three editors are currently giving me a bad login/pass combination error when I try to login with one of the LDAP IDs. I can however use xmlrpc if I use the WordPress MU admin account.</p> <p>Is it possible to use MU/LDAP and still use an offline editor?</p> <p>Current Setup - </p> <p>WordPress MU 1.3<br /> LDAP Authentication Plugin 1.2.0</p> <p>w.blogger 4.02.0197<br /> BlogJet 2.0.0.10</p> <p>Any help would be most appreciated. </p>