openmeetings-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "" <>
Subject Re: SOAP and LDAP authentication
Date Fri, 03 Aug 2012 10:24:55 GMT
Hallo Vieri,

login into the SOAP/REST API with an LDAP user is a conceptional

You would _never_ login anybody using the SOAP/REST api to actually enter a
conference room.
Login via SOAP/REST makes only sense with an Admin (or user level
After you've logged in using SOAP/REST you can create conference rooms or
HASHs to directly enter a conference room.
So the SOAP/REST API is to realize integration into websites or any other
3th party system.
You will not actually "Login" via SOAP with any user, only with the admin
to simulate other users by for example create HASHs


2012/8/3 Vieri <>

> Hi,
> I configured an LDAP authentication module in OpenMeetings so that when a
> user logs in he/she must select a "domain" (local or LDAP).
> This works fine on the web UI.
> However, when accessing via SOAP I use the UserService method: loginUser (
> String SID , String username , String userpass ) but the domain can't be
> specified.
> So LDAP user authentication via SOAP fails while "local" user
> authentication via SOAP succeeds.
> The information was taken from:
> The older (obsolete) site contains more information (!):
> It states "Username from OpenMeetings, the user has to have Admin-rights".
> That makes sense although I suppose that a "moderator" level should be
> enough.
> On a fresh OpenMeetings install, LDAP users don't appear in the "User
> management" tool in the web UI until they have logged in at least once.
> So I logged in once with an LDAP user and then logged in as a local admin
> and changed the LDAP user's level to "admin".
> Still, the SOAP login request with the LDAP user fails.
> getErrorByCode yields "Invalid password" (-11).
> Using OM 2.0 from ASF.
> Any suggestions?
> What debug info whould you require?
> Or is LDAP/AD authentication unsupported via SOAP?
> Thanks,
> Vieri

Sebastian Wagner!/dead_lock

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message