#1646: Request to whitelist 213.133.111.115 for LDAP authentication
---------------------------+-------------------
Reporter: timlinux | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Keywords: ldap
---------------------------+-------------------
We wish to test some new functionality for plugins.qgis.org on our staging
server. Currently we cannot test that logins work because it appears hosts
need to be whitelisted by IP in order LDAP authentication to be allowed
from that host.
Is it possible to add our test server (213.133.111.115) to the whitelist
please?
Can one of you handle this, and let me know how it's done so we can put
it on the LDAP wiki page.
Thanks,
Alex
On 03/29/2016 11:07 PM, OSGeo wrote:
#1646: Request to whitelist 213.133.111.115 for LDAP authentication
---------------------------+-------------------
Reporter: timlinux | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Keywords: ldap
---------------------------+-------------------
We wish to test some new functionality for plugins.qgis.org on our staging
server. Currently we cannot test that logins work because it appears hosts
need to be whitelisted by IP in order LDAP authentication to be allowed
from that host.
Is it possible to add our test server (213.133.111.115) to the whitelist
please?
On Thu, Apr 07, 2016 at 04:55:31PM -0700, Alex Mandel wrote:
Can one of you handle this, and let me know how it's done so we can put
it on the LDAP wiki page.
Added, it's just a simple line in /etc/init.d/ipfilter - I guess we may
also remove some entries.
Cheers,
Martin.
--
Unix _IS_ user friendly - it's just selective about who its friends are !
--------------------------------------------------------------------------
#1646: Request to whitelist 213.133.111.115 for LDAP authentication
---------------------------+--------------------
Reporter: timlinux | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: ldap |
---------------------------+--------------------
Comment (by strk):
I'm not aware of a policy to allow using the LDAP server from outside the
OSGeo network, and I'm afraid it could be currently unavailable
completely. When I needed it, I setup an ssh tunnel to some internal
machines. You could try to do the same, if it's for testing.
Feel free to file a ticket for a way to generically provide authentication
to the outside world (OpenID ? OAuth ?)
#1646: Request to whitelist 213.133.111.115 for LDAP authentication
---------------------------+--------------------
Reporter: timlinux | Owner: sac@…
Type: task | Status: new
Priority: normal | Milestone:
Component: Systems Admin | Resolution:
Keywords: ldap |
---------------------------+--------------------
Comment (by wildintellect):
It is allowed. That's how plugins.qgis.org works. I just don't know where
the setting is stored. I actually thought Martin added this, but maybe I'm
just remembering me asking how to do it. Several QGIS admins are on SAC,
I'm more than happy to let them configure it if they know how.