Openfire

Add support for nested groups from LDAP

Details

  • Type: New Feature New Feature
  • Status: Open Open
  • Priority: Major Major
  • Resolution: Unresolved
  • Affects Version/s: 3.6.4
  • Fix Version/s: 3.7.2
  • Component/s: Core
  • Labels:
    None
  • Acceptance Test - Add?:
    No

Description

A few LDAP servers such as AD support group nesting. It would be handy to support this in Wildfire, as it could make shared group handling for larger organizations much easier.

Activity

Ascending order - Click to sort in descending order
Hide
Permalink
Jefferson Cowart added a comment -

I would like to see support for this for both users and roster groups. While I couldn't find any code that implemented nested LDAP group support in java, here is an implementation in PHP: http://www.mediawiki.org/wiki/Extension:LDAP_Authentication. (Look specifically at the searchNestedGroups function.) That algorithm should be portable to Java fairly easily.

Show
Jefferson Cowart added a comment - I would like to see support for this for both users and roster groups. While I couldn't find any code that implemented nested LDAP group support in java, here is an implementation in PHP: http://www.mediawiki.org/wiki/Extension:LDAP_Authentication. (Look specifically at the searchNestedGroups function.) That algorithm should be portable to Java fairly easily.
Hide
Permalink
Ryan Suarez added a comment -

Seems like a required feature for large scale installs, to group users to reflect organization:
Org->IT->developers->user1
Org->IT->helpdesk->user2
Org->Marketing->user3
...

Show
Ryan Suarez added a comment - Seems like a required feature for large scale installs, to group users to reflect organization: Org->IT->developers->user1 Org->IT->helpdesk->user2 Org->Marketing->user3 ...
Hide
Permalink
Marc Schoechlin added a comment -

This would be cool - my company runs Microsoft Active Directory. AD heavily utilizes nested groups.
This would be really cool to add company structures to the roasters

Show
Marc Schoechlin added a comment - This would be cool - my company runs Microsoft Active Directory. AD heavily utilizes nested groups. This would be really cool to add company structures to the roasters
Hide
Permalink
Wolfgang Neudorfer added a comment -

Hi,

is there progress here? Will this really be fixed by 3.7.1?

I would really really love to use this feature.

Thanks,

Wolfgang

Show
Wolfgang Neudorfer added a comment - Hi, is there progress here? Will this really be fixed by 3.7.1? I would really really love to use this feature. Thanks, Wolfgang
Hide
Permalink
Marc Schoechlin added a comment -

That´s true, support for nested groups would be very nice...

We have 250 users in active directory - an efficent way to use LDAP Groups (i.e. also Email Distribution Lists) would be really cool. Poor group management is real showstopper for large organisations....

All of our groups are implemented as nested groups (according to our organisational structure) - the member attributes
are pointing to the DNs of the nested groups.

Some improvements would be also very welcome for the openfire group management frontend:

  • wildcard/substring search in the group search window (i.e "?devel?", or simply "devel")
  • limit displayed groups to groups which are currently shared
Show
Marc Schoechlin added a comment - That´s true, support for nested groups would be very nice... We have 250 users in active directory - an efficent way to use LDAP Groups (i.e. also Email Distribution Lists) would be really cool. Poor group management is real showstopper for large organisations.... All of our groups are implemented as nested groups (according to our organisational structure) - the member attributes are pointing to the DNs of the nested groups. Some improvements would be also very welcome for the openfire group management frontend:
  • wildcard/substring search in the group search window (i.e "?devel?", or simply "devel")
  • limit displayed groups to groups which are currently shared
Hide
Permalink
Ard-Jan Barnas added a comment -

There are various examples and discussion how to expand group membership to a list of users, including nested groups...

http://forums.oracle.com/forums/thread.jspa?threadID=1155430&tstart=0

Show
Ard-Jan Barnas added a comment - There are various examples and discussion how to expand group membership to a list of users, including nested groups... http://forums.oracle.com/forums/thread.jspa?threadID=1155430&tstart=0
Hide
Permalink
Marc Schoechlin added a comment -

It would be a good idea to make nested group easily identifiable i the group management interface.
(description, icon, ..)

Show
Marc Schoechlin added a comment - It would be a good idea to make nested group easily identifiable i the group management interface. (description, icon, ..)

People

Vote (75)
Watch (34)

Dates

  • Created:
    Updated:
Atlassian JIRA (v4.4.3#663-r165197) | Report a problem
Powered by a free Atlassian JIRA open source license for igniterealtime.org. Try JIRA - bug tracking software for your team.