web - Set up phabricator with LDAP authentication on Debian Jessie -


on server running debian 8, how can set phabricator users authenticated using local ldap server?

(choosing ldap because same accounts should used other web applications on same server later)

replace occurrences of ***** secure passwords , store them safely.

replace occurrences of example.com sensible.

use ssh x11 tunneling jxplorer application if have no local x.

apt-get install emacs aptitude dbconfig-common debconf fonts-font-awesome jq \     php5-fpm libjs-raphael php5-cli php5-curl mysql-server php5-mysql \     php5-ldap po-debconf ucf nginx php5-apcu php5-gd npm python mc git \     default-jdk jxplorer slapd xauth

new password mysql root user: *****

admin password ldap: *****

mysql -u root -p mysql> grant privileges on `phabricator\_%`.* 'phabricator'@localhost identified '*****'; mysql> exit 
dpkg-reconfigure slapd

enter

  • domain: users.example.com,
  • company name: example
  • everywhere else, accept defaults

start jxplorer, connect, enter

  • base dn: dc=users,dc=example,dc=com
  • level: user + password
  • user dn: cn=admin,dc=users,dc=example,dc=com
  • password: used earlier

save connection settings if like

add new users below "users" objectclass account,simplesecurityobject:

  • uid=developer,userpassword=*****,submit
  • uid=reviewer,userpassword=*****,submit
  • uid=webadmin,userpassword=*****,submit
  • uid=anonymous,userpassword=*****,submit

exit jxplorer

download debian binary packages testing distribution: phabricator, arcanist, libphutil. use https://packages.debian.org/testing/phabricator find download links

# in directory these 3 packages have been downloaded dpkg -i *.deb

phabricator domain: phabricator.example.com web server: nginx mysql administrator account username: phabricator

setup dns: either have phabricator.example.com point server in dns. or add ip address of server client's /etc/hosts file phabricator.example.com

service nginx restart

if fails, issue 

nginx -t

to error message.

if error message

nginx: [emerg] not build server_names_hash, should increase server_names_hash_bucket_size: 32 edit /etc/nginx/nginx.conf include like

http {     server_names_hash_bucket_size 64;     ... }

open http://phabricator.example.com/ in web browser. displays:

authentication failure. login session invalid. try reloading page , logging in again. if not work, clear browser cookies.

so reload.

on web page:

  • phabricator username: webadmin
  • real name: webadmin
  • password: *****
  • email: webadmin@example.com

open auth application,

  • add authentication provider username/password
  • add authentication provider ldap
  • check trust email addresses
  • ldap host name: localhost
  • base distinguished name: dc=users,dc=example,dc=com
  • search attributes: uid
  • anonymous username: uid=anonymous,dc=users,dc=example,dc=com
  • anonymous password: used earlier
  • add provider

go phabricator startpage, open people application, choose webadmin edit settings, authentication external accounts, add external account ldap

  • ldap username: webadmin
  • ldap password: used earlier
  • link accounts
  • confirm account link

check if login via ldap works:

  • log out
  • log in webadmin on ldap
  • works

the user/password auth provider can disabled. log out , log in again check

check if user registration on ldap works:

  • log out,
  • ldap username: developer
  • ldap password: set earlier
  • login/register
  • phabricator username: developer
  • real name: developer
  • email: developer@example.com
  • register phabricator account.

account needs approval

log out , log in again webadmin

  • open people application
  • approval queue
  • thumb up

go phabricator start page

  • open config application
  • authentication
  • auth.require-approval
  • set value false
  • save

log out

check login developer

  • works
  • log out

check registration reviewer

  • works without approval

Comments

Post a Comment

Popular posts from this blog

toolbar - How to add link to user registration inside toobar in admin joomla 3 custom component -

im trying write component admin side , need add user creation. dont want duplicate existing codes add link. know how add task not simple link toolbar. thx help. if wanting button opens new user screen can try in component: $bar = jtoolbar::getinstance('toolbar'); $bar->appendbutton('link', 'users', 'new user','index.php?option=com_users&task=user.add'); you need add view.html.php file wherever you're creating toolbar. is need?
Read more

linux - disk space limitation when creating war file -

i have 1 gb disk space limitation hosting app , have used 700mb of it. however want create war file directory big (around 600mb) using command : jar -cvf root.war folderpath that's why encounter quota limitation , can't following. i'm looking way delete folder content when it's applying archive conserve disk space take note can't install zip tool in ssh shell ~ the code works on test directories, test first anyway, deletes files. it's not efficient. assumptions: 300mb free space, in destructively compress 600mb folderpath directory. none of files big -- if file in folderpath 300mb or larger, fail. notes: if ' $out ' file exists, nothing. first find pipes file list while , if ' $out ' doesn't exist in loop, create it, don't update -- if does exist, update it. each pass adds 1 more file, deletes unless file directory. after loop finishes delete empty directories too. unset u ; in=folderpath ; out=roo...
Read more