Title: comtek's Replies | WordPress.org
---
# comtek
[ ](https://wordpress.org/support/users/comtek/)
* [Profile](https://wordpress.org/support/users/comtek/)
* [Topics Started](https://wordpress.org/support/users/comtek/topics/)
* [Replies Created](https://wordpress.org/support/users/comtek/replies/)
* [Reviews Written](https://wordpress.org/support/users/comtek/reviews/)
* [Topics Replied To](https://wordpress.org/support/users/comtek/replied-to/)
* [Engagements](https://wordpress.org/support/users/comtek/engagements/)
* [Favorites](https://wordpress.org/support/users/comtek/favorites/)
Search replies:
## Forum Replies Created
Viewing 4 replies - 1 through 4 (of 4 total)
* Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
In
reply to: [[wpDirAuth] Patch (adds role-mapping functionality and custom filters)](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/)
* Thread Starter [comtek](https://wordpress.org/support/users/comtek/)
* (@comtek)
* [11 years, 11 months ago](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/#post-4797180)
* Ok, now login works, but:
– Authentication Groups doesn’t work: user can’t login
although it belongs to the authorized group. Also the original version has this
issue.
* Yeah, I never had this working either. The code looks quite specific (it requires
memberOf in the user object to contain the DN of a group with a specific CN).
* A workaround would be to have a ‘Account Filter Expression’ something like “(
memberOf=cn=mygroup,dc=example,dc=com)”
* – I can’t see name and mail attribute in the WP user panel, but only uid (I can
see them in the original version).
* Okay, this is another bug.
* The fix is to change:
`function wpDirAuth_retrieveUserDetails($userAttribs){`
into `function wpDirAuth_retrieveUserDetails($aryUserDetails){`
* Please note that the details are only synchronised at first login, so you’ll
need to delete the user.
* – Role mapping doesn’t work: I’d like to map “group1” in “editor” role with Role-
map base DN: ou=groups,dc=mydomain,dc=com and Role Mapping for Editor: (cn=group1)
* (cn=group1) will always be true (assuming that group exists).
* Perhaps you want (&(cn=group1)(member=%dn)) or (&(cn=group1)(memberUid=%uid))?
Its been a while since I wrote this, but I think one of those would work.
* Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
In
reply to: [[wpDirAuth] Patch (adds role-mapping functionality and custom filters)](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/)
* Thread Starter [comtek](https://wordpress.org/support/users/comtek/)
* (@comtek)
* [11 years, 11 months ago](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/#post-4797178)
* Okay, this forum doesn’t like my spacing. The patched file is here:
* [https://plugins.trac.wordpress.org/raw-attachment/ticket/2190/wpDirAuth.2.php](https://plugins.trac.wordpress.org/raw-attachment/ticket/2190/wpDirAuth.2.php)
* Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
In
reply to: [[wpDirAuth] Patch (adds role-mapping functionality and custom filters)](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/)
* Thread Starter [comtek](https://wordpress.org/support/users/comtek/)
* (@comtek)
* [11 years, 11 months ago](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/#post-4797177)
* So the error is at 473. isInDirectory is true and $isBound is false.
* Do you have a single LDAP server? If so, the only way I can see this happening
is if ldap_get_dn at 465 returns true, then wpDirAuth_bindtest at 458 returns
false.
* The list of warnings you give suggests that dirAuthRoleMaps was never initialized
as an array. Oops. This is a bug. I wouldn’t have expected bindtest to break
as a result, but still, perhaps this patch would fix the issue:
* ```
--- /var/www/www.dev.comtek.co.uk/wp-content/plugins/wpdirauth/wpDirAuth.php 2014-04-10 22:05:26.000000000 +0100
+++ /var/www/new.www.comtek.co.uk/wp-content/plugins/wpdirauth/wpDirAuth.php 2014-06-23 21:55:34.000000000 +0100
@@ -558,9 +558,9 @@
* @return array List of LDAP attributes
*/
function wpDirAuth_attribsToLookup()
{
- $filters=array_values(get_site_option('dirAuthRoleMaps'));
+ $filters=array_values( is_array(get_site_option('dirAuthRoleMaps')) ? get_site_option('dirAuthRoleMaps') : array() );
$attrs=array_reduce(
array_map('wpDirAuth_attribsNeeded', $filters),
"array_merge", array() );
$attrs=array_merge($attrs, array_values(unserialize(WPDIRAUTH_LDAP_RETURN_KEYS)), wpDirAuth_attribsNeeded(get_site_option('dirAuthRoleMapBase')) );
@@ -618,9 +618,9 @@
$roleMapBaseDn = get_site_option('dirAuthBaseDn');
$roleMapBaseDn=wpDirAuth_substituteLDAPValues($roleMapBaseDn, $userAttribs);
$roleMapBaseDn=$roleMapBaseDn[0];
- foreach(get_site_option('dirAuthRoleMaps') as $role=>$roleFilter)
+ foreach( (is_array(get_site_option('dirAuthRoleMaps')) ? get_site_option('dirAuthRoleMaps') : array()) as $role=>$roleFilter)
{
if(!strlen($roleFilter))
continue;
$expanded=wpDirAuth_substituteLDAPValues($roleFilter, $userAttribs);
@@ -746,8 +746,9 @@
$institution = wpDirAuth_sanitize($_POST['dirAuthInstitution']);
$strAuthGroups = wpDirAuth_sanitize($_POST['dirAuthGroups']);
$strMarketingSSOID= wpDirAuth_sanitize($_POST['dirAuthMarketingSSOID']);
$roleMapBaseDn = wpDirAuth_sanitize($_POST['dirAuthRoleMapBase']);
+ $roleMaps=array();
foreach($wp_roles->role_objects as $roleObject) {
$roleName=$roleObject->name;
$tmp=$_POST['dirAuthRoleMaps_'.$roleName];
if($tmp)
@@ -819,9 +820,9 @@
$strAuthGroups = wpDirAuth_sanitize(get_site_option('dirAuthGroups'));
$strMarketingSSOID = wpDirAuth_sanitize(get_site_option('dirAuthMarketingSSOID'));
//Require unsanitised data.
$roleMapBaseDn = get_site_option('dirAuthRoleMapBase');
- $roleMaps = get_site_option('dirAuthRoleMaps');
+ $roleMaps = is_array(get_site_option('dirAuthRoleMaps')) ? get_site_option('dirAuthRoleMaps') : array();
// Have to be allowed to contain some HTML
$loginScreenMsg = wpDirAuth_sanitize(get_site_option('dirAuthLoginScreenMsg'), true);
$changePassMsg = wpDirAuth_sanitize(get_site_option('dirAuthChangePassMsg'), true);
```
* Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
In
reply to: [[wpDirAuth] Patch (adds role-mapping functionality and custom filters)](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/)
* Thread Starter [comtek](https://wordpress.org/support/users/comtek/)
* (@comtek)
* [11 years, 11 months ago](https://wordpress.org/support/topic/patch-adds-role-mapping-functionality-and-custom-filters/#post-4797175)
* I see three possible places that message could turn up.
* Does it display “**WordPress Login Error**” or “**Directory Authentication Error**”
before the “Incorrect password”?
* Was your user able to log in to 1.7.6 without the patch applied?
* What are “Account Filter Expression” and “Account Name Attribute Filter” set
to?
* I’ll try to look through the code and see if I can figure out what could be wrong,
but it is difficult without more information to go on.
Viewing 4 replies - 1 through 4 (of 4 total)