[Zope-PAS] groups/roles and PAS

Mrozkowski, Andy amrozkowski at mhc.edu
Wed Jul 19 13:22:05 EDT 2006

I have searched and posted in plone-users and I can't find an answer to this question on using PAS and ldap:
How do you add custom zope roles, and then map them to ldap groups?
I work in a university setting and have the need for finer grained role-control..
Plone 2.5
Zope 2.8.7
python 2.3.5
ldapUserfolder 2.7 beta
ldapMultiPlugins 1.2
Fedora Core 4 server @ http://thewell.mhc.edu 
I have an acl_users folder (PAS) in my Plone site and inside that, I have an LDAPMultiPlugin. Inside the plug-in is an LDAPUserFolder. I feel that it is configured correctly because all my domain un/pw's work, and I can search for users and list all my groups. 
I figured out that it is preferable to map my LDAP groups to Zope roles by using the portal_role_manager, and it is working - as long as I use the built-in Zope roles.
My requirement is to add custom roles within Zope and map my LDAP roles to those. 
In the past I added custom roles from the security tab at the root of my Plone site. This method does not seem to work anymore. What is the preferred method of adding custom Zope roles and mapping them to LDAP groups?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.zope.org/pipermail/zope-pas/attachments/20060719/0527b0ab/attachment.htm

More information about the Zope-PAS mailing list