Software /
code /
prosody-modules
Comparison
mod_auth_ldap/README.markdown @ 1824:8435e1766054
mod_auth_ldap/README: Fix missing word and more markdown syntax tweaks
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Thu, 03 Sep 2015 03:22:31 +0200 |
parent | 1823:50d3383a2e08 |
child | 1987:6d7699eda594 |
comparison
equal
deleted
inserted
replaced
1823:50d3383a2e08 | 1824:8435e1766054 |
---|---|
39 ldap\_filter Search filter, with `$user` and `$host` substituded for user- and hostname `"(uid=$user)"` | 39 ldap\_filter Search filter, with `$user` and `$host` substituded for user- and hostname `"(uid=$user)"` |
40 ldap\_scope Search scope. other values: "base" and "subtree" `"onelevel"` | 40 ldap\_scope Search scope. other values: "base" and "subtree" `"onelevel"` |
41 ldap\_tls Enable TLS (StartTLS) to connect to LDAP (can be true or false). The non-standard 'LDAPS' protocol is not supported. `false` | 41 ldap\_tls Enable TLS (StartTLS) to connect to LDAP (can be true or false). The non-standard 'LDAPS' protocol is not supported. `false` |
42 ldap\_mode How passwords are validated. `"bind"` | 42 ldap\_mode How passwords are validated. `"bind"` |
43 | 43 |
44 **Note:** lua-ldap reads from /etc/ldap/ldap.conf and other files like | 44 **Note:** lua-ldap reads from `/etc/ldap/ldap.conf` and other files like |
45 `~prosody/.ldaprc` if they exist. Users wanting to use a particular TLS | 45 `~prosody/.ldaprc` if they exist. Users wanting to use a particular TLS |
46 root certificate can specify it in the normal way using TLS\_CACERT in | 46 root certificate can specify it in the normal way using TLS\_CACERT in |
47 the OpenLDAP config file. | 47 the OpenLDAP config file. |
48 | 48 |
49 Modes | 49 Modes |
50 ===== | 50 ===== |
51 | 51 |
52 The "getpasswd" mode requires plain text access to passwords in LDAP and | 52 The `"getpasswd"` mode requires plain text access to passwords in LDAP |
53 feeds them into Prosodys authentication system. This enables more secure | 53 and feeds them into Prosodys authentication system. This enables more |
54 authentication mechanisms but does not work for all deployments. | 54 secure authentication mechanisms but does not work for all deployments. |
55 | 55 |
56 The "bind" performs an LDAP bind, does not require plain text access to | 56 The `"bind"` mode performs an LDAP bind, does not require plain text |
57 passwords but limits you to the PLAIN authentication mechanism. | 57 access to passwords but limits you to the PLAIN authentication |
58 mechanism. | |
58 | 59 |
59 Compatibility | 60 Compatibility |
60 ============= | 61 ============= |
61 | 62 |
62 Works with 0.8 and later. | 63 Works with 0.8 and later. |