Do you have a question? Post it now! No Registration Necessary. Now with pictures!
- Posted on
- Daniela Waranie
August 28, 2009, 12:46 pm
rate this thread
i am very new to the Zend Framework and i want to know your thoughts
about the following things:
(I know it is a cross topic thing, sorry. ...but you are well skilled ;-))
1) I want to manage Users and there Login (username and password) in a
directory server (OpenLDAP).
2) I want to manage the OpenLDAP data with phpLDAPadmin.
3) Frontend Users and Backend Users should be able to login via my
website. This should be possible with zend_auth_adapter_ldap (as is saw
a) Users should be able to change/reset the password of there account
via my application. The should be able to create (selfregister: username
and password) and close a account. Therefore my application needs to be
able to create/change/delete/disable these data in the LDAP Server. This
should be possible with zend_ldap (manual: 29.3.2. Basic CRUD operations).
b) I want to create/delete/disable/change/cascade usergroups and
assign/unassign users to one or more groups on the OpenLDAP via
c) I want to mange detailed access rights on ressources and properties
in the OpenLDAP (via phpLDAPadmin) and assign these rights to a role
(user / usergroup) sets to one or many usergroups. Is that possible to
to save this data in a LDAP and to get the data back to the PHP
application as a serialized zend_acl for the user (respecting the
inheritance of the usergroup cascade)? As far as i realized the first
part of the question (the access right definition) can be designed as a
ldap "node class" and the usergroup can be "instanciated" from a list of
such "node classes" and gets all the entrys of each class in one object
(usergroup node). Right?
In my php application i want to check the user accessrights when trying
to access a ressource. The acl für this user should be loaded from the
ldap after successful login. So the developer do only create a list of
'ressource names' and 'property names' and share those with the LDAP
manager as a kind of a shared 'API'/'NAMESPACE'.
Can you provide details and code snippets for point c) and the last
Thanks in advance and best regards
Re: Zend Framework: ACL, Auth und Auth_Adapter_LDAP
Daniela Waranie schreef:
For questions related to the Zend Framework you're much better of asking
them in the ZF community. The developers and contributers of ZF are very
active contributers to the mailingslist also. So you can get in direct
contact with them.
They have very active mailing lists, see:
http://tinyurl.com/y4f9lz (redirects to a framework.zend.com page)
You can view and react to the mailinglists through Nabble also:
The ZF community also has a IRC channel, which I heard is pretty active: