OCA
/
server-tools
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1846 Commits
13 Branches
0 Tags
45 MiB
 
 
 
Branch: 9.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '9.0'
${ noResults }
server-tools/users_ldap_groups
Stéphane Bidoul (ACSONE) 06610cc38d
remove obsolete .pot files [ci skip] 		6 years ago
..
i18n remove obsolete .pot files [ci skip] 6 years ago
security CHG: adapted to base_external_dbsource; code refactored 12 years ago
static/description Add missing default oca icons 9 years ago
README.rst some makeup and change the ldap operators from plain python objects to a transientmodel 9 years ago
__init__.py some makeup and change the ldap operators from plain python objects to a transientmodel 9 years ago
__openerp__.py [MIG] Make modules uninstallable 9 years ago
users_ldap_groups.py use AbstractModel instead of TransientModel so we don't create useless db tables 9 years ago
users_ldap_groups.xml CHG: adapted to base_external_dbsource; code refactored 12 years ago

README.rst 

.. image:: https://img.shields.io/badge/licence-AGPL--3-blue.svg
    :alt: License: AGPL-3

users_ldap_groups
=================

Adds user accounts to groups based on rules defined by the administrator.


Usage
=====

Define mappings in Settings->Companies->[your company]->tab configuration->[
your ldap server].

Decide whether you want only groups mapped from ldap (Only ldap groups=y) or a
mix of manually set groups and ldap groups (Only ldap groups=n). Setting this
to 'no' will result in users never losing privileges when you remove them from
a ldap group, so that's a potential security issue. It is still the default to
prevent losing group information by accident.

For active directory, use LDAP attribute 'memberOf' and operator 'contains'.
Fill in the DN of the windows group as value and choose an OpenERP group users
with this windows group are to be assigned to.

For posix accounts, use operator 'query' and a value like
(&(cn=bzr)(objectClass=posixGroup)(memberUid=$uid))

The operator query matches if the filter in value returns something, and value
can contain $[attribute] which will be replaced by the first value of the
user's ldap record's attribute named [attribute].

Bug Tracker
===========

Bugs are tracked on `GitHub Issues <https://github.com/OCA/server-tools/issues>`_.
In case of trouble, please check there if your issue has already been reported.
If you spotted it first, help us smashing it by providing a detailed and welcomed feedback
`here <https://github.com/OCA/server-tools/issues/new?body=module:%20{module_name}%0Aversion:%20{version}%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.


Credits
=======

Contributors
------------

* Therp BV <info@therp.nl>
* Giacomo Spettoli <giacomo.spettoli@gmail.com>

Maintainer
----------

.. image:: https://odoo-community.org/logo.png
   :alt: Odoo Community Association
   :target: https://odoo-community.org

This module is maintained by the OCA.

OCA, or the Odoo Community Association, is a nonprofit organization whose
mission is to support the collaborative development of Odoo features and
promote its widespread use.

To contribute to this module, please visit http://odoo-community.org.