I’ve just migrated a site from 1.2 to 2.1 and so far almost all is well.
We authenticate against our institutional LDAP server, and that works for logins.
But when trying to add a contributor to an event, the search option does not work.
In 1.2 there was a check box on the user search dialog specifying "search LDAP"
That function mostly worked. That is, it worked only for email addresses, and only for exact matches, but that was good enough.
In 2.0 the user search dialog no longer has a “search LDAP” check box. The only options are “Exact Match” and "users with no Indico account"
Any attempt to search for a user just hangs, with the rotating wait symbol. I can’t search against name or email address, partial or complete.
I can verify that these users exist by looking in the User management section. That search function works.
I’m supposing that my LDAP configuration must not be quite right, even though logins work fine.
I’m not sure how to diagnose the problem, since the search never completes there is no error report.
Here is my ldap configuration from indico.conf:
_ldap_config = {
'uri': 'ldaps://ourldapserver',
'bind_dn': '',
'bind_password': '',
'timeout': 30,
'verify_cert': True,
'page_size': 1500,
'user_base': 'ou=People,DC=lbl,DC=gov',
'gid': 'cn',
'group_base': 'OU=Groups, DC=lbl, DC=gov',
'group_filter': '(objectClass=groupOfUniqueNames)',
'member_of_attr': 'uniqueMember',
'ad_group_style': True
}
AUTH_PROVIDERS = {
'ldap': {
'type': 'ldap',
'title': 'LDAP',
'ldap': _ldap_config,
'default': True
}
}
IDENTITY_PROVIDERS = {
'ldap': {
'type': 'ldap',
'title': 'LDAP',
'ldap': _ldap_config,
'mapping': {
'first_name': 'givenName',
'last_name': 'sn',
'email': 'mail',
},
'trusted_email': True,
'default_group_provider': True,
'synced_fields': {'first_name', 'last_name'}
}
}