I have been trying to implement this extension. Much seems to be going
OK, but I cannot display the feed (or subscribe to it successfully.) The
main problem seems to be that the feed XML has a blank line at the
beginning. However, there are other issues. The Apache2 error log shows
the following Undefined properties:
* NewsChannel::$newsWikiExcludeCategory
* NewsChannel::$authorizedEditors
and undefined variables:
* $wbNewsChannelExportTextOnly
all in NewsChannel_body.php
The blank line shows up in the Recent Changes feed, also.
Any help would be greatly appreciated.
Susan <http://www.mediawiki.org/wiki/User:Mathsinger> 18:22, 17
February 2009 (UTC)
Hello,
i have to run our mediawiki on an IIS Server with PHP, we use NTLM for
authentiifcation.
When a user ulploads an image the permission on that image are
assigned to that active directory user
and not to the IIS_hostname user, therefore all the user AD Users get
an login when they acces the site with that image.
What can I do to set the permissions right on an image upload?
greetings
.r
Dear all
I have a problem with our WIKI's and the LDAP authentication:
* MediaWiki version: 1.12.0
* PHP version: 5.1.6
* MySQL version: 5.0.22
* URL: Intranet only
For some WIKIs that are running in our Intranet, I need to authenticate our users using LDAP and the following two WIKI groups: Readers (testgroup) and Writers (testgroup2). Anonymous should not be able to read the WIKI pages.
my problem is, that using the syntax:
$wgLDAPRequiredGroups = array(
"testLDAPdomain"=>array(
"cn=testgroup,ou=groups,dc=LDAP,dc=example,dc=com",
"cn=testgroup2,ou=groups,dc=LDAP,dc=example,dc=com"
),
I cannot define different rights for users in the testgroup than the users in the testgroup2 have. This mean, if a user is in one of each two groups, he will always get the Writers access.
Can you please explain how I can define two groups, with different rights (Readers & Writers)?
Regards,
Alex Durrer
Schweizerische Bundesbahnen SBB
Service Center Software Engineering / ETU
Lindenhofstr. 1 / Worblaufen, CH-3000 Bern 65
Direkt +41 (0)51 220 68 05
Fax +41 (0)51 220 44 55
Mobil +41 (0)79 750 12 09
alexander.durrer(a)sbb.ch<mailto:alexander.durrer@sbb.ch> / www.sbb.ch<www.sbb.ch%20>
Does anyone know if the setups described here
http://www.mediawiki.org/wiki/Manual:Preventing_access#Simple_private_wiki
provide a relatively secure solution that is not to easy to hack?
I would like to use mediawiki in closed user group (in which all users will
be having full access to all parts of the wiki).
The solution is intended for internal discussions and preparation of working
papers in a council on IT security issues. This means that some kinds of
people would probably find it funny to hack us ... so even though I like
Mediawiki, I don't want to make us a very easy target.
Regards
kassoe
I have a feature on a mediawiki site that updates the home page every day based on current date. Problem is: browser caching is causing the page to not be updated for returning users. Is there a way to fix this?
Thx, LainieH
Hi,
I want to use authentication local Ldap and kerberos. It's work for
local and Ldap (i have a box to choose) but for kerberos i can't mix.
The two modes local and ldap work together but i have an extension for
kerberos.
Result when i use kerberos i can't use locol or ldap.
Does any people have an idea?
Thank's
Hi, can anyone recommend me a good *multi-domain webhost* to host my
Mediawiki? I am with Siteground. They are good but they are now asking me to
upgrade to VPS hosting @ US$99 a month although I only use 0.5% of my hard
disk allocation and 0.3% of my bandwidth allocation.
I tried Hostgator but the installation is not automatic. I have to set up my
own database manually and I am worried that there will be many features that
they can't handle, just like my local webhost in Malaysia. They just give
you a hosting and that's it! Hostgator honored their money-back guarantee
and promptly refund my money.
PM Poon
Hi
My authentication kerberos login doesn't work's, what is wrong?
Thank's for your help
Localsettings.php
require_once( "$IP/extensions/LdapAutoAuthentication.php" );
require_once "$IP/extensions/LdapAuthentication.php";
$wgAuth = new LdapAuthenticationPlugin();
$wgLDAPDomainNames = array('bidule');
$wgLDAPServerNames = array('bidule' => 'rd.truc.fr');
$wgLDAPSearchStrings = array('bidule' => 'USER-NAME@bidule');
$wgLDAPBaseDNs = array('bidule' => 'DC=rd,DC=francetelecom,DC=fr');
$wgLDAPUserBaseDNs = array('bidule' =>
'OU=Cptbidule,OU=Annuaire,DC=rd,DC=truc,DC=fr');
$wgLDAPSearchAttributes = array('bidule' => 'sAMAccountName');
$wgLDAPEncryptionType = array('bidule' => 'clear');
#$wgLDAPDisableAutoCreate = array("bidule"=>true);
$wgLDAPRetrievePrefs = array("bidule"=>true);
$wgLDAPUseLocal = true;
// REMOTE_USER will be in the form username(a)EXAMPLE.COM, if we
// just chop off @EXAMPLE.COM, we have the username. You can change
// this as needed.
$wgLDAPAutoAuthUsername = preg_replace( '/@.*/', '',
$_SERVER["REMOTE_USER"] );
// After we set all configuration options, we want to setup the Auto
Auth plugin. This will
// create an instance of LdapAuthentication as $wgAuth
AutoAuthSetup();
I found in internet an LdapAutoAuthentication.php like:
<?php
class LdapAutoAuthentication {
/**
* Does the web server authentication piece of the LDAP plugin.
*
* @access public
*/
static function Authenticate( $user, &$result ) {
global $wgUser;
global $wgAuth;
global $wgLDAPAutoAuthUsername;
global $wgVersion;
$wgAuth->printDebug( "Entering AutoAuthentication.",
NONSENSITIVE );
if ( version_compare( $wgVersion, '1.14.0', '<' ) ) {
//The following section is a hack to determine whether or
not
//the user is logged in. We need a core fix to make this
simpler.
if ( isset( $_SESSION['wsUserID'] ) ) {
$user->setID( $_SESSION['wsUserID'] );
if ( $user->loadFromId() ) {
if ( $_SESSION['wsToken'] == $user->mToken &&
$_SESSION['wsUserName'] == $user->mName ) {
$wgAuth->printDebug( "User is already
logged in.", NONSENSITIVE );
$result = true;
return true;
} else {
$user->loadDefaults();
}
}
}
} else {
if ( $user->isLoggedIn() ) {
$wgAuth->printDebug( "User is already logged in.",
NONSENSITIVE );
return true;
}
}
$wgAuth->printDebug( "User isn't logged in, calling setup.",
NONSENSITIVE );
//Let regular authentication plugins configure themselves
for auto
//authentication chaining
$wgAuth->autoAuthSetup();
$wgAuth->printDebug( "Calling authenticate with username
($wgLDAPAutoAuthUsername).", NONSENSITIVE );
//The user hasn't already been authenticated, let's check
them
$authenticated = $wgAuth->authenticate(
$wgLDAPAutoAuthUsername );
if ( !$authenticated ) {
//If the user doesn't exist in LDAP, there isn't
much reason to
//go any further.
$wgAuth->printDebug("User wasn't found in LDAP,
exiting.", NONSENSITIVE );
return false;
}
//We need the username that MediaWiki will always use, *not*
the one we
//get from LDAP.
$mungedUsername = $wgAuth->getCanonicalName(
$wgLDAPAutoAuthUsername );
$wgAuth->printDebug( "User exists in LDAP; finding the user
by name ($mungedUsername) in MediaWiki.", NONSENSITIVE );
$localId = User::idFromName( $mungedUsername );
$wgAuth->printDebug( "Got id ($localId).", NONSENSITIVE );
//Is the user already in the database?
if( !$localId ) {
$userAdded = self::attemptAddUser( $user, $mungedUsername );
if ( !$userAdded ) {
$result = false;
return false;
}
} else {
$wgAuth->printDebug( "User exists in local database,
logging in.", NONSENSITIVE );
$user->setID( $localId );
$user->loadFromId();
$user->setCookies();
$wgAuth->updateUser( $user );
wfSetupSession();
$result = true;
}
return true;
}
static function attemptAddUser( $user, $mungedUsername ) {
global $wgAuth;
if ( !$wgAuth->autoCreate() ) {
$wgAuth->printDebug( "Cannot automatically create
accounts.", NONSENSITIVE );
return false;
}
$wgAuth->printDebug( "User does not exist in local database;
creating.", NONSENSITIVE );
// Checks passed, create the user
$user->loadDefaults( $mungedUsername );
$user->addToDatabase();
$wgAuth->initUser( $user, true );
$user->setCookies();
wfSetupSession();
# Update user count
$ssUpdate = new SiteStatsUpdate( 0, 0, 0, 0, 1 );
$ssUpdate->doUpdate();
# Notify hooks (e.g. Newuserlog)
wfRunHooks( 'AuthPluginAutoCreate', array( $user ) );
return true;
}
/* No logout link in MW */
static function NoLogout( &$personal_urls, $title ) {
global $wgAuth;
$wgAuth->printDebug( "Entering NoLogout.", NONSENSITIVE );
$personal_urls['logout'] = null;
return true;
}
}
?>
Hi,
I see on this page:
http://www.mediawiki.org/wiki/Extension:LDAP_Authentication/Kerberos_Con
figuration_Examples
General MediaWiki configuration
The following example uses Active Directory.
require_once( "$IP/extensions/LdapAutoAuthentication.php" );
require_once( "$IP/extensions/LdapAuthentication.php" );
But i don't found LdapAutoAuthentication.php where i can download it?
Thank's
Hi,
Does any peolple had to do it? The ldap authentication work's but I see
on this page
But i don't understand this:
http://www.mediawiki.org/wiki/Extension:LDAP_Authentication/Kerberos_Con
figuration_Examples
Configuration steps for article based Kerberos login
1. Create an article called "Kerberos Login"
1. Add "#REDIRECT [[Main Page]]"
2. Protect the article
2. Edit loginprompt in Special:Allmessages and add:
[[Kerberos Login|Click here to use your Single Sign On
credentials.
Where i can create article?