Reading groups from LDAP
Michael Ströder
michael at stroeder.com
Wed Jun 18 17:58:30 CEST 2008
Michael Ströder wrote:
> Melita Mihaljevic wrote:
>>
>> My search filter is (it's all in one line):
>> search_filter =
>> '(|(&(objectClass=groupOfUniqueNames)(uniqueMember=uid=usera*))
>> (&(objectClass=groupOfNames)(member=uid=usera*))
>> (&(objectClass=posixGroup)(memberUid=usera*)))'
>
> Why do you want to do wildcard searches? This is not guaranteed to work
> since some of the member attributes might not even have a SUBSTR
> matching rule assigned.
And note that user-IDs might not always be in the attribute 'uid'. It's
perfectly valid that a user enters his e-mail address into the login
form and you first have to search for the user's entry which might not
have attribute 'uid' set at all.
Ciao, Michael.
More information about the python-ldap
mailing list