Comparison

mod_auth_ldap/README.markdown @ 1824:8435e1766054

mod_auth_ldap/README: Fix missing word and more markdown syntax tweaks
author Kim Alvefur <zash@zash.se>
date Thu, 03 Sep 2015 03:22:31 +0200
parent 1823:50d3383a2e08
child 1987:6d7699eda594
comparison
equal deleted inserted replaced
1823:50d3383a2e08 1824:8435e1766054
39 ldap\_filter Search filter, with `$user` and `$host` substituded for user- and hostname `"(uid=$user)"` 39 ldap\_filter Search filter, with `$user` and `$host` substituded for user- and hostname `"(uid=$user)"`
40 ldap\_scope Search scope. other values: "base" and "subtree" `"onelevel"` 40 ldap\_scope Search scope. other values: "base" and "subtree" `"onelevel"`
41 ldap\_tls Enable TLS (StartTLS) to connect to LDAP (can be true or false). The non-standard 'LDAPS' protocol is not supported. `false` 41 ldap\_tls Enable TLS (StartTLS) to connect to LDAP (can be true or false). The non-standard 'LDAPS' protocol is not supported. `false`
42 ldap\_mode How passwords are validated. `"bind"` 42 ldap\_mode How passwords are validated. `"bind"`
43 43
44 **Note:** lua-ldap reads from /etc/ldap/ldap.conf and other files like 44 **Note:** lua-ldap reads from `/etc/ldap/ldap.conf` and other files like
45 `~prosody/.ldaprc` if they exist. Users wanting to use a particular TLS 45 `~prosody/.ldaprc` if they exist. Users wanting to use a particular TLS
46 root certificate can specify it in the normal way using TLS\_CACERT in 46 root certificate can specify it in the normal way using TLS\_CACERT in
47 the OpenLDAP config file. 47 the OpenLDAP config file.
48 48
49 Modes 49 Modes
50 ===== 50 =====
51 51
52 The "getpasswd" mode requires plain text access to passwords in LDAP and 52 The `"getpasswd"` mode requires plain text access to passwords in LDAP
53 feeds them into Prosodys authentication system. This enables more secure 53 and feeds them into Prosodys authentication system. This enables more
54 authentication mechanisms but does not work for all deployments. 54 secure authentication mechanisms but does not work for all deployments.
55 55
56 The "bind" performs an LDAP bind, does not require plain text access to 56 The `"bind"` mode performs an LDAP bind, does not require plain text
57 passwords but limits you to the PLAIN authentication mechanism. 57 access to passwords but limits you to the PLAIN authentication
58 mechanism.
58 59
59 Compatibility 60 Compatibility
60 ============= 61 =============
61 62
62 Works with 0.8 and later. 63 Works with 0.8 and later.