前言介紹
- 這款 WordPress 外掛「wpDirAuth」是 2007-08-28 上架。
- 目前有 700 個安裝啟用數。
- 上一次更新是 2023-08-18,距離現在已有 625 天。超過一年沒更新,安裝要確認版本是否可用。以及後續維護問題!
- 外掛最低要求 WordPress 2.2 以上版本才可以安裝。
- 有 12 人給過評分。
- 論壇上目前有 1 個提問,問題解答率 0%
外掛協作開發者
gilzow | stephdau | apokalyptik |
外掛標籤
ldap | ldaps | login | directory | authentication |
內容簡介
wpDirAuth 可將認證從本地 WordPress 實例轉移到中央目錄 (LDAP) 伺服器。
wpDirAuth 允許中央目錄 (LDAP) 伺服器的使用者在未註冊的情況下登錄授權的 WordPress 實例。該外掛程式會在第一次登錄時為每個目錄使用者創建一個新帳戶,以便他們可以像任何 WP 使用者一樣完全訪問喜好和功能。啟用插件不會限制您使用目錄驗證,您仍然可以創建新的僅 WP 用戶,以及在 WordPress 中開啟公開註冊。您還可以指定任何特權級別給您的目錄使用者,並且這些使用者將在他們通常可以更新其 WP 密碼的地方(在個人資料屏幕上,在使用者編輯中等)參照他們的機構密碼策略。
LDAP/LDAPS
認證應該與大多數LDAP啟用的目錄服務一起使用,例如OpenLDAP,Apache Directory,Microsoft Active Directory,Novell eDirectory,Sun Java System Directory Server等。 wpDirAuth支持LDAP和LDAPS (SSL) 的連接,如果Web伺服器上可用,可以強制使用SSL進行WordPress身份驗證。它還支援認證伺服器連接池,以進行偽載平衡和容錯能力,或多個源目錄認證。由於用於查找使用者在LDAP伺服器中檔案的關鍵並不總是相同的,這取決於您的LDAP伺服器類型和機構選擇,因此您可以通過wpDirAuth管理工具自定義它。當以目錄使用者身份登錄時,WP的“記住我”功能從常規WP使用者的6個月降級為僅1小時,以便在公共終端訪問WP時不會過度危險。
品牌和通知
您可以在WordPress的關鍵區域中定義通知,例如登錄屏幕和個人檔案編輯屏幕,以向您的目錄使用者發送通知。由於這些管理員可編輯的值支持HTML(管理員、編譯者,請注意 xss!),因此您可以將您的目錄使用者指向與更改其機構密碼相關的中央支援信息、WordPress使用相關政策等中心支援信息。還有一個簡單的可選服務條款概念,僅為目錄使用者實現,當同意時將記錄一次性接受日期。請注意,同意服務條款對用戶在系統中的訪問級別沒有影響,如果有需求或透過直接代碼貢獻實現,這種情況可能會在未來版本中發生變化。
使用 wpDirAuth
安裝和啟用後,您將能夠通過專用的插件配置工具來管理您的目錄設置,該工具位於 WordPress“設置”管理部分下的“wpDirAuth”菜單下。通過轉到WordPress“用戶”管理部分中的“添加Dir Auth使用者”菜單,可以預先將目錄驗證的使用者添加到您的WordPress系統中並授予角色。WordPress 的內置幫助菜單中為此部分提供了上下文幫助。有一個次級啟用切換,因此您可以安裝和啟用插件,查看選項面板,但不立即接受目錄驗證,甚至可以隨時打開或關閉該功能。
說明和支援
請在 WordPress 插件論壇上發布問題,請求幫助或發送電子郵件至 [email protected]。請務必包含“wpdirauth”。
原文外掛簡介
Please see the Changelog (Development tab above) for recent updates/changes.
wpDirAuth shifts authentication from the local WordPress instance to a central directory (LDAP) server(s).
wpDirAuth allows users of central directory (LDAP) servers to login to authorized WordPress instances without having to register. The plugin creates a new account for each directory user on first login so that they have full access to preferences and functions, as any WP user would. Activating the plugin will not restrict you to using directory authentication and you will still be able to both create new WP-only users as well as turn on public registration in WordPress. You can also assign any privilege levels to your directory users, and the those users will be referred to their institutional password policy whenever they would normally able to update their WP passwords (on the profile screen, in user edit, etc).
LDAP/LDAPS
Authentication should work with most LDAP enabled directory services, such as OpenLDAP, Apache Directory, Microsoft Active Directory, Novell eDirectory, Sun Java System Directory Server, and more. wpDirAuth supports LDAP and LDAPS (SSL) connectivity and can force SSL for WordPress authentication if it is available on the Web server. It also supports server connection pools, for pseudo load balancing and fault tolerance, or multiple source directory authentication. Because the key used to locate a user’s profile in the LDAP server is not always the same, depending on your LDAP server type and institutional choices, you can define your own through the wpDirAuth administration tool. When logging in as a directory user, the WP “remember me” feature is downgraded from 6 months for regular WP users to only 1 hour, so that institutional passwords are not overly endangered when accessing WP from public terminals.
Branding & Notifications
You can define notifications addressed to your directory users in key WordPress areas, such as the login screen and the profile edit screen. Since these admin-editable values support HTML (admin, coders, beware of xss!), you can point your directory users to central support information related to functions such as changing their institutional password, a WordPress usage related policy, etc. There is also a simple and optional terms of services concept, only implemented for directory users, which will simply record a one-time acceptance date when agreed upon. Note that agreeing to the TOS has no effect on the user’s level of access in the system, fact which could change in future version if there is a demand for it, or through direct code contribution to that effect.
Using wpDirAuth
Once installed and activated, you will be able to administer your directory settings through the dedicated plugin configuration tool found under the wpDirAuth menu found in the WordPress Settings admin section. Directory Authenticated users can now be pre-added to your wordpress system and granted roles by going to the Add Dir Auth User menu found in the WordPress Users admin section. Contextual help for this section is available for this section within WordPress’ built-in help menu. See the inline help found in the tool for more information on the settings. There is a secondary activation toggle, so you can install and activate the plugin, check out the options panel, but not immediately accept directory authentication, or even simply turn the feature on or off at any time.
Help and Support
Please post questions, request for help to the WordPress plugins forum or email [email protected]. Please be sure to include ‘wpdirauth’ in the subject line.
TO-DO’s
Internationalization
Refactor to a class
More action/filter hooks
Source and Development
wpDirAuth welcomes friendly contributors wanting to lend a hand, be it in the form of code through SVN patches, user support, platform portability testing, security consulting, localization help, etc. The [current] goal is to keep the plugin self-contained (ie: no 3rd-party lib) for easier security maintenance, while keeping the code clean and extensible. Focus is on security, features, security, and let’s not forget, security. Unit tests will hopefully be developed and constant security audit performed. Recurring quality patch contributions will lead to commit privileges to the project source repository. Please post questions/requests for help to the wordpress forums and/or email [email protected]
License
General Public License
Copyrights are listed in chronological order, by contributions.
wpDirAuth: WordPress Directory Authentication, original author
Copyright (c) 2007 Stephane Daury – http://stephane.daury.org/
wpDirAuth and wpLDAP Patch Contributions
Copyright (c) 2007 PKR Internet, LLC – http://www.pkrinternet.com/
wpDirAuth Patch Contributions
Copyright (c) 2007 Todd Beverly
wpLDAP: WordPress LDAP Authentication
Copyright (c) 2007 Ashay Suresh Manjure – http://ashay.org/
wpDirAuth Patch Contribution and current maintainer
Copyright (c) 2010-2017 Paul Gilzow – http://gilzow.com/
wpDirAuth is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation.
wpDirAuth is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see http://www.gnu.org/licenses/.
Project History
Originally started from a patched version of wpLDAP (1.02+patch), wpDirAuth has
since then been heavily overhauled and features have been modified and added.
In other words, a classic case of pimp my lib' (hopefully for the better).
* Current: wpDirAuth: http://wpdirauth.gilzow.com/
* Original: wpLDAP: https://wordpress.org/plugins/wpldap/
* wpLDAP Patch: https://web.archive.org/web/20100731020249/http://www.pkrinternet.com/~rbulling/private/wpLDAP-1.02-ssl.patch
各版本下載點
- 方法一:點下方版本號的連結下載 ZIP 檔案後,登入網站後台左側選單「外掛」的「安裝外掛」,然後選擇上方的「上傳外掛」,把下載回去的 ZIP 外掛打包檔案上傳上去安裝與啟用。
- 方法二:透過「安裝外掛」的畫面右方搜尋功能,搜尋外掛名稱「wpDirAuth」來進行安裝。
(建議使用方法二,確保安裝的版本符合當前運作的 WordPress 環境。
1.0 | 1.1 | 1.2 | 1.5 | 1.5.1 | 1.5.2 | 1.6.0 | 1.6.1 | 1.7.5 | 1.7.6 | 1.7.9 | 1.8.0 | 1.8.1 | trunk | 1.10.1 | 1.10.2 | 1.10.4 | 1.10.5 | 1.10.6 | 1.10.7 | 1.7.12 | 1.7.14 | 1.7.15 | 1.7.16 | 1.7.17 |
延伸相關外掛(你可能也想知道)
暫無相關外掛推薦。