<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=ISO-8859-1"
http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
I will try to implement your suggestion for the proxy server. I have
always had a direct internet connection, so have never had the need
for any proxies.<br>
<br>
Cheers,<br>
Jules.<br>
<br>
On 14/12/2010 20:10, <a class="moz-txt-link-abbreviated" href="mailto:patrick.gaikowski@kaufland.com">patrick.gaikowski@kaufland.com</a> wrote:
<blockquote
cite="mid:OF7A41026B.4EA7275F-ONC12577F9.006D0B3C-C12577F9.006ED6CC@de.int.kaufland"
type="cite">
<p>Hi Jules,<br>
<br>
we can live very good with that two messages. It was only a
design question from me. LDAP is now working with Authentication
and Authorization. Now we can assign a special role to users who
should be able to share files outside our domain.<br>
<br>
You did a very good job! Now we can offer our colleagues in
China a solution for controlled file sharing.<br>
<br>
Ah i have an additional solution for users, who use a proxy for
outside communication for captcha (validation). With that
configuration you're able to establish such a solution in LANs
with no direct Internet access. I found the code in a forum. It
would be good to integrate it to source.<br>
<br>
<b>recaptchalib.php </b>...<br>
<br>
<font color="#ff0000"># $http_request = "POST $path
HTTP/1.0\r\n";</font><br>
<font color="#ff0000"> $http_request = "POST
<a class="moz-txt-link-freetext" href="http://">http://</a>".$host.":".$port.$path." HTTP/1.1\r\n";</font><br>
<br>
<font color="#ff0000"># if( false == ( $fs = @fsockopen($host,
$port, $errno, $errstr, 10) ) ) {</font><br>
<font color="#ff0000"> if( false == ( $fs = @fsockopen("</font><b><font
color="#ff0000"><PROXY_IP></font></b><font
color="#ff0000">", "</font><b><font color="#ff0000"><PROXY_PORT></font></b><font
color="#ff0000">", $errno, $errstr, 15) ) ) {</font><br>
<br>
Now zendto sends POST to Proxy<br>
<br>
<font color="#0000ff">[07/Dec/2010:21:08:26 +0100] "POST </font><font
color="#0000ff"><a moz-do-not-send="true"
href="http://www.google.com/recaptcha/api/verify">http://www.google.com/recaptcha/api/verify</a></font><font
color="#0000ff"> HTTP/1.1" 200 528 TCP_MISS:DIRECT</font><br>
<br>
Source: <a moz-do-not-send="true"
href="http://www.greenhughes.com/content/recaptcha-drupal-and-proxy-way-make-it-all-work-together">http://www.greenhughes.com/content/recaptcha-drupal-and-proxy-way-make-it-all-work-together</a><br>
<br>
<br>
<br>
<br>
<a moz-do-not-send="true" href="http://www.kaufland.de">http://www.kaufland.de</a>
<br>
<br>
Kaufland Informationssysteme GmbH & Co. KG<br>
Postfach 12 53 - 74149 Neckarsulm<br>
Kommanditgesellschaft<br>
Sitz: Neckarsulm<br>
Registergericht: Amtsgericht Stuttgart HRA 104163<br>
<br>
Diese Nachricht enthält vertrauliche Informationen und ist
ausschließlich für<br>
den Adressaten bestimmt. Jeder Gebrauch durch Dritte ist
verboten. Falls Sie<br>
die Daten irrtümlich erhalten haben, nehmen Sie bitte Kontakt
mit dem<br>
Absender auf und löschen Sie die Daten auf jedem Computer und
Datenträger.<br>
This message contains confidential information and is intended
solely for the<br>
use by the addressee. Any use of this message by a third party
is prohibited.<br>
If you receive this message in error, please contact the sender
and delete the<br>
data from any computer and data carrier. <br>
</p>
<ul>
<img src="cid:part1.01050506.05030306@Zend.To" alt="Inactive
hide details for Jules <Jules@zend.to>" height="16"
width="16">Jules <a class="moz-txt-link-rfc2396E" href="mailto:Jules@zend.to"><Jules@zend.to></a>
</ul>
<br>
<table border="0" cellpadding="0" cellspacing="0" width="100%">
<tbody>
<tr valign="top">
<td width="40%">
<ul>
<b><font size="2">Jules <a class="moz-txt-link-rfc2396E" href="mailto:Jules@zend.to"><Jules@zend.to></a></font></b><font
size="2"> </font><br>
<font size="2">Gesendet von: <a class="moz-txt-link-abbreviated" href="mailto:zendto-bounces@zend.to">zendto-bounces@zend.to</a></font>
<p><font size="2">14.12.2010 16:26</font>
<table border="1">
<tbody>
<tr valign="top">
<td bgcolor="#ffffff" width="168"><font size="2">Bitte
antworten an<br>
ZendTo Users <a class="moz-txt-link-rfc2396E" href="mailto:zendto@zend.to"><zendto@zend.to></a></font></td>
</tr>
</tbody>
</table>
</p>
</ul>
</td>
<td width="60%">
<table border="0" cellpadding="0" cellspacing="0"
width="100%">
<tbody>
<tr valign="top">
<td valign="middle" width="1%"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="66"><br>
</td>
<td width="100%"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="1"><br>
<font size="2">ZendTo Users <a class="moz-txt-link-rfc2396E" href="mailto:zendto@zend.to"><zendto@zend.to></a></font></td>
</tr>
<tr valign="top">
<td valign="middle" width="1%"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="66"><br>
</td>
<td width="100%"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="1"><br>
</td>
</tr>
<tr valign="top">
<td valign="middle" width="1%"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="66"><br>
<div align="right"><font size="2">Thema </font></div>
</td>
<td width="100%"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="1"><br>
<font size="2">[ZendTo] Re: Antwort: Re: Antwort:
Re: LDAPAuthorization for zendto</font></td>
</tr>
</tbody>
</table>
<table border="0" cellpadding="0" cellspacing="0">
<tbody>
<tr valign="top">
<td width="58"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="1"></td>
<td width="336"><img
src="cid:part2.04050709.08040608@Zend.To" alt=""
border="0" height="1" width="1"></td>
</tr>
</tbody>
</table>
</td>
</tr>
</tbody>
</table>
<br>
<font size="4">Yes, I agree that's not perfect. But I can't find a
decent way within the existing data structures of implementing
this without a nasty hack :-(<br>
<br>
There are other reasons the authentication might fail, even when
they have put in the right username and password, such as too
many failed login attempts causing them to be locked out. But
that's all implemented in a different place, which doesn't have
access to the LDAP code at all.<br>
<br>
The return code is just a true/false value, and I really don't
want to change that if I can avoid it. Using a non-zero value to
represent failure is *really bad* in my book, as in the current
code a result of 0 is failure and 1 is success. I really don't
want to represent "failure but for a different reason" as 2.<br>
<br>
I admit you get the "username or password incorrect" error
message as well, when ideally you shouldn't, but at least the
first error message it gives is the correct one.<br>
<br>
Any better ideas of how I can implement it neatly and logically?<br>
<br>
Jules.<br>
<br>
On 14/12/2010 15:09, </font><a moz-do-not-send="true"
href="mailto:patrick.gaikowski@kaufland.com"><u><font
color="#0000ff" size="4">patrick.gaikowski@kaufland.com</font></u></a><font
size="4"> wrote: </font>
<ul>
<ul>
<font size="4">Hello Jules,<br>
<br>
yes this was the missing point. <br>
<br>
An optimization would be to have only the error message
"Authorisation failed" when the Authentication was
successful. In this context the Input credentials seems to
be wrong but the aren't. As you can see on the screenshot
the user seems to be logged in but isn't logged in because
auf missing rights.<br>
<br>
<br>
</font><img src="cid:part10.05020806.03090201@Zend.To" alt=""
height="331" width="584"><font size="4"><br>
<br>
<br>
</font><img src="cid:part11.07000507.02000906@Zend.To" alt=""
height="30" width="430"><font size="4"><br>
<br>
<br>
Greetings<br>
<br>
Patrick<br>
<br>
<br>
</font><u><font color="#0000ff" size="4"><br>
</font></u><a moz-do-not-send="true"
href="http://www.kaufland.de/"><u><font color="#0000ff"
size="4">http://www.kaufland.de</font></u></a><font
size="4"> <br>
<br>
Kaufland Informationssysteme GmbH & Co. KG<br>
Postfach 12 53 - 74149 Neckarsulm<br>
Kommanditgesellschaft<br>
Sitz: Neckarsulm<br>
Registergericht: Amtsgericht Stuttgart HRA 104163<br>
<br>
Diese Nachricht enthält vertrauliche Informationen und ist
ausschließlich für<br>
den Adressaten bestimmt. Jeder Gebrauch durch Dritte ist
verboten. Falls Sie<br>
die Daten irrtümlich erhalten haben, nehmen Sie bitte
Kontakt mit dem<br>
Absender auf und löschen Sie die Daten auf jedem Computer
und Datenträger.<br>
This message contains confidential information and is
intended solely for the<br>
use by the addressee. Any use of this message by a third
party is prohibited.<br>
If you receive this message in error, please contact the
sender and delete the<br>
data from any computer and data carrier. </font>
<p><tt><font size="4"><br>
<br>
_______________________________________________<br>
ZendTo mailing list<br>
</font></tt><a moz-do-not-send="true"
href="mailto:ZendTo@zend.to"><tt><u><font color="#0000ff"
size="4">ZendTo@zend.to</font></u></tt></a><tt><font
size="4"><br>
</font></tt><a moz-do-not-send="true"
href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto"><tt><u><font
color="#0000ff" size="4">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</font></u></tt></a></p>
</ul>
</ul>
<br>
<tt><font size="4">Jules<br>
<br>
-- <br>
Julian Field MEng CITP CEng<br>
</font></tt><a moz-do-not-send="true" href="http://www.zend.to/"><tt><u><font
color="#0000ff" size="4">www.Zend.To</font></u></tt></a><tt><font
size="4"><br>
<br>
Need help fixing or optimising your systems?<br>
Contact me!<br>
Need help getting you started solving new requirements from
your boss?<br>
Contact me!<br>
<br>
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415
B654<br>
Follow me at twitter.com/JulesFM<br>
</font></tt><tt>_______________________________________________<br>
ZendTo mailing list<br>
<a class="moz-txt-link-abbreviated" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a><br>
</tt><tt><a moz-do-not-send="true"
href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a></tt><br>
<pre wrap="">
<fieldset class="mimeAttachmentHeader"></fieldset>
_______________________________________________
ZendTo mailing list
<a class="moz-txt-link-abbreviated" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a>
<a class="moz-txt-link-freetext" href="http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto">http://mailman.ecs.soton.ac.uk/mailman/listinfo/zendto</a></pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">Jules
--
Julian Field MEng CITP CEng
<a class="moz-txt-link-abbreviated" href="http://www.Zend.To">www.Zend.To</a>
Follow me at twitter.com/JulesFM
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
'All programs have a desire to be useful' - Tron, 1982
</pre>
</body>
</html>