<html><body bgcolor="#FFFFFF">
<p>Hi Jules,<br>
<br>
we can live very good with that two messages. It was only a design question from me. LDAP is now working with Authentication and Authorization. Now we can assign a special role to users who should be able to share files outside our domain.<br>
<br>
You did a very good job! Now we can offer our colleagues in China a solution for controlled file sharing.<br>
<br>
Ah i have an additional solution for users, who use a proxy for outside communication for captcha (validation). With that configuration you're able to establish such a solution in LANs with no direct Internet access. I found the code in a forum. It would be good to integrate it to source.<br>
<br>
<b>recaptchalib.php </b>...<br>
<br>
<font color="#FF0000"># $http_request = "POST $path HTTP/1.0\r\n";</font><br>
<font color="#FF0000"> $http_request = "POST http://".$host.":".$port.$path." HTTP/1.1\r\n";</font><br>
<br>
<font color="#FF0000"># if( false == ( $fs = @fsockopen($host, $port, $errno, $errstr, 10) ) ) {</font><br>
<font color="#FF0000"> if( false == ( $fs = @fsockopen("</font><b><font color="#FF0000"><PROXY_IP></font></b><font color="#FF0000">", "</font><b><font color="#FF0000"><PROXY_PORT></font></b><font color="#FF0000">", $errno, $errstr, 15) ) ) {</font><br>
<br>
Now zendto sends POST to Proxy<br>
<br>
<font color="#0000FF">[07/Dec/2010:21:08:26 +0100] "POST </font><font color="#0000FF"><a href="http://www.google.com/recaptcha/api/verify">http://www.google.com/recaptcha/api/verify</a></font><font color="#0000FF"> HTTP/1.1" 200 528 TCP_MISS:DIRECT</font><br>
<br>
Source: <a href="http://www.greenhughes.com/content/recaptcha-drupal-and-proxy-way-make-it-all-work-together">http://www.greenhughes.com/content/recaptcha-drupal-and-proxy-way-make-it-all-work-together</a><br>
<br>
<br>
<br>
<br>
<a href="http://www.kaufland.de">http://www.kaufland.de</a> <br>
<br>
Kaufland Informationssysteme GmbH & Co. KG<br>
Postfach 12 53 - 74149 Neckarsulm<br>
Kommanditgesellschaft<br>
Sitz: Neckarsulm<br>
Registergericht: Amtsgericht Stuttgart HRA 104163<br>
<br>
Diese Nachricht enthält vertrauliche Informationen und ist ausschließlich für<br>
den Adressaten bestimmt. Jeder Gebrauch durch Dritte ist verboten. Falls Sie<br>
die Daten irrtümlich erhalten haben, nehmen Sie bitte Kontakt mit dem<br>
Absender auf und löschen Sie die Daten auf jedem Computer und Datenträger.<br>
This message contains confidential information and is intended solely for the<br>
use by the addressee. Any use of this message by a third party is prohibited.<br>
If you receive this message in error, please contact the sender and delete the<br>
data from any computer and data carrier. <br>
<ul><img src="cid:10__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" width="16" height="16" alt="Inactive hide details for Jules <Jules@zend.to>">Jules <Jules@zend.to></ul>
<br>
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr valign="top"><td width="40%">
<ul><b><font size="2">Jules <Jules@zend.to></font></b><font size="2"> </font><br>
<font size="2">Gesendet von: zendto-bounces@zend.to</font>
<p><font size="2">14.12.2010 16:26</font>
<table border="1">
<tr valign="top"><td width="168" bgcolor="#FFFFFF"><font size="2">Bitte antworten an<br>
ZendTo Users <zendto@zend.to></font></td></tr>
</table>
</ul>
</td><td width="60%">
<table width="100%" border="0" cellspacing="0" cellpadding="0">
<tr valign="top"><td width="1%" valign="middle"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="66" alt=""><br>
</td><td width="100%"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="1" alt=""><br>
<font size="2">ZendTo Users <zendto@zend.to></font></td></tr>
<tr valign="top"><td width="1%" valign="middle"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="66" alt=""><br>
</td><td width="100%"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="1" alt=""><br>
</td></tr>
<tr valign="top"><td width="1%" valign="middle"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="66" alt=""><br>
<div align="right"><font size="2">Thema </font></div></td><td width="100%"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="1" alt=""><br>
<font size="2">[ZendTo] Re: Antwort: Re: Antwort: Re: LDAPAuthorization for zendto</font></td></tr>
</table>
<table border="0" cellspacing="0" cellpadding="0">
<tr valign="top"><td width="58"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="1" alt=""></td><td width="336"><img src="cid:20__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" border="0" height="1" width="1" alt=""></td></tr>
</table>
</td></tr>
</table>
<br>
<font size="4">Yes, I agree that's not perfect. But I can't find a decent way within the existing data structures of implementing this without a nasty hack :-(<br>
<br>
There are other reasons the authentication might fail, even when they have put in the right username and password, such as too many failed login attempts causing them to be locked out. But that's all implemented in a different place, which doesn't have access to the LDAP code at all.<br>
<br>
The return code is just a true/false value, and I really don't want to change that if I can avoid it. Using a non-zero value to represent failure is *really bad* in my book, as in the current code a result of 0 is failure and 1 is success. I really don't want to represent "failure but for a different reason" as 2.<br>
<br>
I admit you get the "username or password incorrect" error message as well, when ideally you shouldn't, but at least the first error message it gives is the correct one.<br>
<br>
Any better ideas of how I can implement it neatly and logically?<br>
<br>
Jules.<br>
<br>
On 14/12/2010 15:09, </font><a href="mailto:patrick.gaikowski@kaufland.com"><u><font size="4" color="#0000FF">patrick.gaikowski@kaufland.com</font></u></a><font size="4"> wrote: </font>
<ul>
<ul><font size="4">Hello Jules,<br>
<br>
yes this was the missing point. <br>
<br>
An optimization would be to have only the error message "Authorisation failed" when the Authentication was successful. In this context the Input credentials seems to be wrong but the aren't. As you can see on the screenshot the user seems to be logged in but isn't logged in because auf missing rights.<br>
<br>
<br>
</font><img src="cid:30__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" width="584" height="331" alt=""><font size="4"><br>
<br>
<br>
</font><img src="cid:40__=4EBBFD6ADFFE8DAC8f9e8a93@de.int.kaufland" width="430" height="30" alt=""><font size="4"><br>
<br>
<br>
Greetings<br>
<br>
Patrick<br>
<br>
<br>
</font><u><font size="4" color="#0000FF"><br>
</font></u><a href="http://www.kaufland.de/"><u><font size="4" color="#0000FF">http://www.kaufland.de</font></u></a><font size="4"> <br>
<br>
Kaufland Informationssysteme GmbH & Co. KG<br>
Postfach 12 53 - 74149 Neckarsulm<br>
Kommanditgesellschaft<br>
Sitz: Neckarsulm<br>
Registergericht: Amtsgericht Stuttgart HRA 104163<br>
<br>
Diese Nachricht enthält vertrauliche Informationen und ist ausschließlich für<br>
den Adressaten bestimmt. Jeder Gebrauch durch Dritte ist verboten. Falls Sie<br>
die Daten irrtümlich erhalten haben, nehmen Sie bitte Kontakt mit dem<br>
Absender auf und löschen Sie die Daten auf jedem Computer und Datenträger.<br>
This message contains confidential information and is intended solely for the<br>
use by the addressee. Any use of this message by a third party is prohibited.<br>
If you receive this message in error, please contact the sender and delete the<br>
data from any computer and data carrier. </font>
<p><tt><font size="4"><br>
<br>
_______________________________________________<br>
ZendTo mailing list<br>
</font></tt><a href="mailto:ZendTo@zend.to"><tt><u><font size="4" color="#0000FF">ZendTo@zend.to</font></u></tt></a><tt><font size="4"><br>
</font></tt><a href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto"><tt><u><font size="4" color="#0000FF">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</font></u></tt></a></ul>
</ul>
<br>
<tt><font size="4">Jules<br>
<br>
-- <br>
Julian Field MEng CITP CEng<br>
</font></tt><a href="http://www.zend.to/"><tt><u><font size="4" color="#0000FF">www.Zend.To</font></u></tt></a><tt><font size="4"><br>
<br>
Need help fixing or optimising your systems?<br>
Contact me!<br>
Need help getting you started solving new requirements from your boss?<br>
Contact me!<br>
<br>
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654<br>
Follow me at twitter.com/JulesFM<br>
</font></tt><tt>_______________________________________________<br>
ZendTo mailing list<br>
ZendTo@zend.to<br>
</tt><tt><a href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a></tt><br>
</body></html>