{"id":10266,"date":"2010-08-27T19:11:36","date_gmt":"2010-08-27T19:11:36","guid":{"rendered":"https:\/\/wordpress.org\/plugins-wp\/authldap\/"},"modified":"2025-04-16T05:47:42","modified_gmt":"2025-04-16T05:47:42","slug":"authldap","status":"publish","type":"plugin","link":"https:\/\/mn.wordpress.org\/plugins\/authldap\/","author":6809422,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_crdt_document":"","version":"3.1.3","stable_tag":"3.1.3","tested":"6.8.5","requires":"2.5.0","requires_php":"7.4","requires_plugins":null,"header_name":"AuthLDAP","header_author":"Andreas Heigl <andreas@heigl.org>","header_description":"","assets_banners_color":"","last_updated":"2025-04-16 05:47:42","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/github.com\/heiglandreas\/authLdap","header_author_uri":"http:\/\/andreas.heigl.org","rating":5,"author_block_rating":0,"active_installs":5000,"downloads":135659,"num_ratings":19,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description","installation","faq","changelog"],"tags":{"2.5.3":{"tag":"2.5.3","author":"heiglandreas","date":"2022-03-21 17:08:31"},"2.5.3-RC3":{"tag":"2.5.3-RC3","author":"heiglandreas","date":"2022-03-21 17:06:08"},"2.5.4":{"tag":"2.5.4","author":"heiglandreas","date":"2023-08-29 08:34:14"},"2.5.6":{"tag":"2.5.6","author":"heiglandreas","date":"2023-08-31 09:15:32"},"2.5.7":{"tag":"2.5.7","author":"heiglandreas","date":"2023-08-31 09:47:47"},"2.5.8":{"tag":"2.5.8","author":"heiglandreas","date":"2023-08-31 19:17:39"},"2.5.9":{"tag":"2.5.9","author":"heiglandreas","date":"2023-09-07 10:05:24"},"2.6.0":{"tag":"2.6.0","author":"heiglandreas","date":"2024-01-07 11:10:33"},"2.6.1":{"tag":"2.6.1","author":"heiglandreas","date":"2024-03-13 17:11:35"},"2.6.2":{"tag":"2.6.2","author":"heiglandreas","date":"2024-05-18 11:48:58"},"2.6.3":{"tag":"2.6.3","author":"heiglandreas","date":"2024-08-15 15:41:19"},"2.6.4":{"tag":"2.6.4","author":"heiglandreas","date":"2024-10-11 05:43:44"},"3.0.0":{"tag":"3.0.0","author":"heiglandreas","date":"2025-01-29 17:28:52"},"3.0.1":{"tag":"3.0.1","author":"heiglandreas","date":"2025-01-30 06:32:03"},"3.0.2":{"tag":"3.0.2","author":"heiglandreas","date":"2025-01-30 10:28:48"},"3.0.3":{"tag":"3.0.3","author":"heiglandreas","date":"2025-01-30 11:45:59"},"3.0.4":{"tag":"3.0.4","author":"heiglandreas","date":"2025-01-31 16:24:23"},"3.1.0":{"tag":"3.1.0","author":"heiglandreas","date":"2025-02-17 07:06:56"},"3.1.1":{"tag":"3.1.1","author":"heiglandreas","date":"2025-02-26 13:30:54"},"3.1.2":{"tag":"3.1.2","author":"heiglandreas","date":"2025-04-15 16:00:17"},"3.1.3":{"tag":"3.1.3","author":"heiglandreas","date":"2025-04-16 05:47:42"}},"upgrade_notice":[],"ratings":{"1":0,"2":0,"3":0,"4":0,"5":19},"assets_icons":[],"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":["2.5.3","2.5.3-RC3","2.5.4","2.5.6","2.5.7","2.5.8","2.5.9","2.6.0","2.6.1","2.6.2","2.6.3","2.6.4","3.0.0","3.0.1","3.0.2","3.0.3","3.0.4","3.1.0","3.1.1","3.1.2","3.1.3"],"block_files":[],"assets_screenshots":[],"screenshots":[],"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[2463,8382,710,2464,44511],"plugin_category":[38],"plugin_contributors":[85629],"plugin_business_model":[],"class_list":["post-10266","plugin","type-plugin","status-publish","hentry","plugin_tags-active-directory","plugin_tags-auth","plugin_tags-authentication","plugin_tags-ldap","plugin_tags-openldap","plugin_category-authentication","plugin_contributors-heiglandreas","plugin_committers-heiglandreas"],"banners":[],"icons":{"svg":false,"icon":"https:\/\/s.w.org\/plugins\/geopattern-icon\/authldap.svg","icon_2x":false,"generated":true},"screenshots":[],"raw_content":"<!--section=description-->\n<p>Use your existing LDAP as authentication-backend for your wordpress!<\/p>\n\n<p>So what are the differences to other Wordpress-LDAP-Authentication-Plugins?<\/p>\n\n<ul>\n<li>Flexible: You are totaly free in which LDAP-backend to use. Due to the extensive configuration you can freely decide how to do the authentication of your users. It simply depends on your filters<\/li>\n<li>Independent: As soon as a user logs in, it is added\/updated to the Wordpress' user-database to allow wordpress to always use the correct data. You only have to administer your users once.<\/li>\n<li>Failsafe: Due to the users being created in Wordpress' User-database they can also log in when the LDAP-backend currently is gone.<\/li>\n<li>Role-Aware: You can map Wordpress' roles to values of an existing LDAP-attribute.<\/li>\n<\/ul>\n\n<p>For more Information on the configuration have a look at https:\/\/github.com\/heiglandreas\/authLdap<\/p>\n\n<!--section=installation-->\n<ol>\n<li>Upload the extracted folder <code>authLdap<\/code> to the <code>\/wp-content\/plugins\/<\/code> directory<\/li>\n<li>Activate the plugin through the 'Plugins' menu in WordPress<\/li>\n<li>Configure the Plugin via the 'authLdap'-Configuration-Page.<\/li>\n<\/ol>\n\n<!--section=faq-->\n<dl>\n<dt id='where%20can%20i%20find%20more%20informations%20about%20the%20plugin%3F'><h3>Where can I find more Informations about the plugin?<\/h3><\/dt>\n<dd><p>Go to https:\/\/github.com\/heiglandreas\/authLdap<\/p><\/dd>\n<dt id='where%20can%20i%20report%20issues%20with%20the%20plugin%3F'><h3>Where can I report issues with the plugin?<\/h3><\/dt>\n<dd><p>Please use the issuetracker at https:\/\/github.com\/heiglandreas\/authLdap\/issues<\/p><\/dd>\n<dt id='where%20can%20i%20report%20sensitive%20security%20issues%20with%20the%20plugin%3F'><h3>Where can I report sensitive security issues with the plugin?<\/h3><\/dt>\n<dd><p>In essence: Report a security vulnerability at https:\/\/github.com\/heiglandreas\/authLdap\/security\/advisories\/new<\/p>\n\n<p>Please see https:\/\/github.com\/heiglandreas\/authLdap\/blob\/master\/SECURITY.md for more details<\/p><\/dd>\n\n<\/dl>\n\n<!--section=changelog-->\n<h4>3.1.3<\/h4>\n\n<ul>\n<li>Add testing with WP 6.8<\/li>\n<\/ul>\n\n<h4>3.1.2<\/h4>\n\n<ul>\n<li>Fixed bug when filter uses different field than WordPress username is taken from<\/li>\n<\/ul>\n\n<h4>3.1.1<\/h4>\n\n<ul>\n<li>Removed sensitive parameters from logs<\/li>\n<\/ul>\n\n<h4>3.1.0<\/h4>\n\n<ul>\n<li>Improve error logging<\/li>\n<\/ul>\n\n<h4>3.0.4<\/h4>\n\n<ul>\n<li>Fix PHP7.4 issue with dereferencing associative arrays<\/li>\n<\/ul>\n\n<h4>3.0.3<\/h4>\n\n<ul>\n<li>Fix further issues with PHP7.4<\/li>\n<\/ul>\n\n<h4>3.0.2<\/h4>\n\n<ul>\n<li>Fix an issue with annotations in PHP7.4<\/li>\n<\/ul>\n\n<h4>3.0.1<\/h4>\n\n<ul>\n<li>Fix admin interface when no group mappings are set up<\/li>\n<\/ul>\n\n<h4>3.0.0<\/h4>\n\n<ul>\n<li>Internal split of code to prepare for better testability and allowing in the future authorization without authentication<\/li>\n<\/ul>\n\n<h4>2.6.3<\/h4>\n\n<ul>\n<li>Internal fixes and adding some more end-to-end tests<\/li>\n<\/ul>\n\n<h4>2.6.2<\/h4>\n\n<ul>\n<li>Fix issue with Groups not being updated on existing accounts (see https:\/\/github.com\/heiglandreas\/authLdap\/issues\/250 for details)<\/li>\n<\/ul>\n\n<h4>2.6.0<\/h4>\n\n<ul>\n<li>Fix reducing assigned WordPress roles to single role on login when WordPress roles shall be kept<\/li>\n<li>Add Behavioural testing and first 3 scenarios<\/li>\n<\/ul>\n\n<h4>2.5.9<\/h4>\n\n<ul>\n<li>Adds information about security-contacts<\/li>\n<li>Addresses CVE-2023-41655<\/li>\n<\/ul>\n\n<h4>2.5.8<\/h4>\n\n<ul>\n<li>Fix regression from 2.5.7<\/li>\n<\/ul>\n\n<h4>2.5.7<\/h4>\n\n<ul>\n<li>Fix regressions from 2.5.4<\/li>\n<li>Fix CI system<\/li>\n<\/ul>\n\n<h4>2.5.4<\/h4>\n\n<ul>\n<li>Update Tested up to<\/li>\n<\/ul>\n\n<h4>2.5.3<\/h4>\n\n<ul>\n<li>Fix issue with broken role-assignement in combination with WooCommerce<\/li>\n<li>Fix spelling issue<\/li>\n<li>Allow DN as role-definition<\/li>\n<\/ul>\n\n<h4>2.5.0<\/h4>\n\n<ul>\n<li>Ignore the order of capabilities to tell the role. In addition the filter <code>editable_roles<\/code> can be used to limit the roles<\/li>\n<\/ul>\n\n<h4>2.4.11<\/h4>\n\n<ul>\n<li>Fix issue with running on PHP8.1<\/li>\n<\/ul>\n\n<h4>2.4.9<\/h4>\n\n<ul>\n<li>Improve group-assignement UI<\/li>\n<\/ul>\n\n<h4>2.4.8<\/h4>\n\n<ul>\n<li>Make textfields in settings-page wider<\/li>\n<\/ul>\n\n<h4>2.4.7<\/h4>\n\n<ul>\n<li>Replace deprecated function<\/li>\n<li>Fix undefined index<\/li>\n<li>Add filter for retrieving other params at login (authLdap_filter_attributes)<\/li>\n<li>Add do_action after successfull login (authLdap_login_successful)<\/li>\n<\/ul>\n\n<h4>2.4.0<\/h4>\n\n<ul>\n<li>Allow to use environment variables for LDAP-URI configuration<\/li>\n<\/ul>\n\n<h4>2.3.0<\/h4>\n\n<ul>\n<li>Allow to not overwrite existing WordPress-Users with LDAP-Users as that can be a security issue.<\/li>\n<\/ul>\n\n<h4>2.1.0<\/h4>\n\n<ul>\n<li>Add search-base for groups. This might come in handy for multisite-instances<\/li>\n<\/ul>\n\n<h4>2.0.0<\/h4>\n\n<ul>\n<li>This new release adds Multi-Site support. It will no longer be possible to use this plugin just in one subsite of a multisite installation!<\/li>\n<li>Adds a warning screen to the config-section when no LDAPextension could be found<\/li>\n<li>Fixes an issue with the max-length of the username<\/li>\n<\/ul>\n\n<h4>1.5.1<\/h4>\n\n<ul>\n<li>Fixes an issue with escaped backslashes and quotes<\/li>\n<\/ul>\n\n<h4>1.5.0<\/h4>\n\n<ul>\n<li>Allows parts of the LDAP-URI to be URLEncoded<\/li>\n<li>Drops support for PHP 5.4<\/li>\n<\/ul>\n\n<h4>1.4.20<\/h4>\n\n<ul>\n<li>Allows multiple LDAP-servers to be queried (given that they use the same attributes)<\/li>\n<li>Fixes issue with URL-Encoded informations (see https:\/\/github.com\/heiglandreas\/authLdap\/issues\/108)<\/li>\n<\/ul>\n\n<h4>1.4.19<\/h4>\n\n<ul>\n<li>Adds support for TLS<\/li>\n<\/ul>\n\n<h4>1.4.14<\/h4>\n\n<ul>\n<li>Update to showing password-fields check (thanks to @chaplina)<\/li>\n<\/ul>\n\n<h4>1.4.13<\/h4>\n\n<ul>\n<li>Removed generation of default email-address (thanks to @henryk)<\/li>\n<li>Fixes password-hashing when caching passwords (thanks to @litinoveweedle)<\/li>\n<li>Removes the possibility to reset a password for LDAP-based users (thanks to @chaplina)<\/li>\n<li>Removes the password-change-Email from 4.3 on (thanks to @litinoveweedle)<\/li>\n<li>Fixes double authentication-attempt (that resulted in failed authentication) (thanks to @litinoveweedle)<\/li>\n<\/ul>\n\n<h4>1.4.10<\/h4>\n\n<ul>\n<li>Cleanup by removing deprecated code<\/li>\n<li>Fixes issues with undefined variables<\/li>\n<li>Enables internal option-versioning<\/li>\n<li>Setting users nickname initially to the realname instead of the uid<\/li>\n<li>Fixes display of password-change possibility in users profile-page<\/li>\n<\/ul>\n\n<h4>1.4.9<\/h4>\n\n<ul>\n<li>Fixed an issue with changing display name on every login<\/li>\n<li>Use proper way of looking up user-roles in setups w\/o DB-prefix<\/li>\n<\/ul>\n\n<h4>1.4.8<\/h4>\n\n<ul>\n<li>Updated version string<\/li>\n<\/ul>\n\n<h4>1.4.7<\/h4>\n\n<ul>\n<li>Use default user to retrieve group menberships and not logging in user.<\/li>\n<li>return the UID from the LDAP instead of the value given by the user<\/li>\n<li>remove unnecessary checkbox<\/li>\n<li>Adds a testsuite<\/li>\n<li>Fixes PSR2 violations<\/li>\n<\/ul>\n\n<p>[\u2026]<\/p>\n\n<h4>1.2.1<\/h4>\n\n<ul>\n<li>Fixed an issue with group-ids<\/li>\n<li>Moved the code to GitHub (https:\/\/github.com\/heiglandreas\/authLdap)<\/li>\n<\/ul>\n\n<h4>1.1.0<\/h4>\n\n<ul>\n<li>Changed the login-process. Now users that are not allowed to login due to\nmissing group-memberships are not created within your blog as was the standard\nuntil Version 1.0.3 - Thanks to alex@tayts.com<\/li>\n<li>Changed the default mail-address that is created when no mail-address can be\nretrieved from the LDAP from me@example.com to $username@example.com so that\na new user can be created even though the mail address already exists in your\nblog - Also thanks to alex@tayts.com<\/li>\n<li>Added support for WordPress-Table-prefixes as the capabilities of a user\nare interlany stored in a field that is named \"$tablePrefix_capabilities\" -\nagain thanks to alex@tayts.com and also to sim0n of silicium.mine.nu<\/li>\n<\/ul>","raw_excerpt":"Use your existing LDAP flexible as authentication backend for WordPress","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/10266","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=10266"}],"author":[{"embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/heiglandreas"}],"wp:attachment":[{"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=10266"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=10266"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=10266"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=10266"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=10266"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/mn.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=10266"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}