Browseable LDAP session backend¶

LemonLDAP::NG configuration¶

Go in the Manager and set the session module to Apache::Session::Browseable::LDAP for each session type you intend to use:

General parameters » Sessions » Session storage » Apache::Session module
General parameters » Sessions » Persistent sessions » Apache::Session module
CAS Service » CAS sessions module name
OpenID Connect Service » Sessions » Sessions module name
SAML2 Service » Advanced » SAML sessions module name

The fill out the corresponding module parameters:

Required parameters
Name	Comment	Example
ldapServer	URI of the server	ldap://localhost
ldapConfBase	DN of sessions branch	ou=sessions,dc=example,dc=com
ldapBindDN	Connection login	cn=admin,dc=example,dc=com
ldapBindPassword	Connection password	secret
ldapRaw	Binary attributes	(?i:^jpegPhoto\|;binary)
Index	Fields to index	refer to List of fields to index by session type
Optional parameters
Name	Comment	Default value
ldapObjectClass	Objectclass of the entry	applicationProcess
ldapAttributeId	Attribute storing session ID	cn
ldapAttributeContent	Attribute storing session content	description
ldapAttributeIndex	Attribute storing index	ou
ldapVerify	Perform certificate validation	require (use none to disable)
ldapCAFile	Path of CA file bundle	(system CA bundle)
ldapCAPath	Perform CA directory	(system CA bundle)

Note

In order to properly handle UTF-8 encoded values, you may need to set the ldapRaw parameter to a non-null value. This requires Apache::Session::Browseable >= 1.3.3