Welcome to the LimeSurvey Community Forum

Please help us help you and fill where relevant:
Your LimeSurvey version: Community Edition 6.4.11+240304
Own server or LimeSurvey hosting: Own Server, Ubuntu 22.04
Survey theme/template:
==================
Hello,

Problem description in short
Questions:
1. How to debug AuthLDAP plugin? Where are the relevant logs located?
2. Where does it access the certificates? (where do I need to import my certificates to make the plugin find them)

Problem description long:
I have set up a Limesurvey server recently and I am trying to implement the LDAP login via AuthLDAP however I can not get it to work on port 3269.
What did work successfully however is the login via port 3268 using the following settings:

server:         ldap://example.com
port:            3268
ldapV:         LDAPv3
referrals      off (false)
start-tls       on (true)
auth            seach and bind
attribute      sAMAccountname
create user on(true)
ldap acc      user
password    ***

Now, if the values are changed for port 3269
server            ldaps://example.com
port               3269
ldapV            LDAPv3
referrals        off(false)
start tls         on(true)
Rest remains unchanged as above, so LDAP filter etc. should not be an issue with my configuration.

However when logging in I get the error message "Can't contact LDAP server"

I set debug mode from 0 to 2, but I am confused to as to where the logs are being written

-> the Problem is probably a certificate, please correct me if my assumption is incorrect
The certificates I have are for SSL to enable https and the root certificate as well as a subordinate certificate.
the root and the sub are in the Ubuntu trust store /usr/local/share/ca-certificates
the ssl is in the apache sites available config file referenced and located in /etc/ssl/certs

Thank you






 

i am still getting the error as Authldap.php is same as you mentioned in github.com/LimeSurvey/LimeSurvey/pull/2685 . Is there any other way to it?? Atleast can anybody tell me where are logs we can see for this in Rocky 8

I dont have ldap for now...i just want the user which I have created through admin , having username and password should only access the survey..this is what i want sir

hey thanks for the quick reply....no what I meant is once a survey is created can their is way possible a limeuser or ldap user is only allowed to fill the survey in closed survey mode...as I have usecae where everyone is not having email...i need to bypass the token and also authenticate the person ...like this github.com/SondagesPro/LS-registerQuick , but instead of registering and allowing it to give survey I want to authenticate and let him give the survey..if it belong to particular usergroup which has access to it... i tried this even this github.com/unibo/LimeSurvey-ProxyAuth-Plugin?tab=readme-ov-file which is very close to what I want to do but its not working and some suggested this github.com/SondagesPro/LS-replaceRegister but it not even getting installed giving me error of mismatch of pluginManger construct

Your LimeSurvey version: Version 5.6.53+240131
Own server or LimeSurvey hosting: Ubuntu 22.04, PHP 8.0.30
Survey theme/template: Bootswatch
==================
Hi,

after upgrading from LS 3 to LS 5 I can't figure out how to add a new user from my configured LDAP connection.

In LS 3 I had the choice to choose between Internal Database and LDAP while adding a new user.
In LS 5 it looks like I can only add local users as I don't see a switch to LDAP.

The LDAP connections still works fine in LS 5, as the already created users can login with their credentials from the AD.

Can you please tell me how to add a LDAP User in LS 5.

Thanks in advance
Thomas

Please help us help you and fill where relevant:
Your LimeSurvey version: LimeSurvey Community Edition Version 6.4.1+240108
Own server or LimeSurvey hosting: Own Server
Survey theme/template: default
==================
Hi,

I'm banging my head on the wall trying to get AuthLDAP to work, all I want is to allow our "Active Directory" users to authenticate to LimeSurvey using their Active Directory credentials. Our AD domain function level: Windows Server 2008 R2. This LimeSurvey installation is a fresh installation, and it's my first encounter with LimeSurvey. I have configured many other systems and applications to authenticate against our AD, but this one just will not work. 

The AuthLDAP documentation is very limited, and does not include explanation for all options.

Using the attached configuration, I always get: "Incorrect username and/or password!"

Is there something wrong with my configuration values?
How should the username should be typed, domain\samaccountname, samaccountname@domain.com, samaccountname  ?
What is the difference between "simple bind" and "Search and bind"?
Do we need to create LimeSurvey user for every AD user? I hope not!

Any help would be appreciated.

Please help us help you and fill where relevant:
Your LimeSurvey version: 6.4.0
Own server or LimeSurvey hosting: Own Server
Survey theme/template: N/A
==================
Hi All,

I am encountering this issue:
PHP Fatal error: require_once(): Failed opening required '/app/limesurvey/application/config/internal.php' (include_path='/app/limesurvey/vendor/pear/console_getopt:/app/limesurvey/vendor/pear/pear_exception:/app/limesurvey/vendor/pear/pear-core-minimal/src:/app/limesurvey/vendor/pear/ole:/app/limesurvey/vendor/pear/spreadsheet_excel_writer:.:/usr/share/php') in /app/limesurvey/index.php on line 158

when I deploy the limesurvey tool on Kyma using postgresql db

following is my Dockerfile when I build the image and deploying through a yaml file# Use the postgres:16.1-bullseye base imageFROM debian:bullseye # Install PHP and other necessary packagesRUN apt-get update && \    apt-get install -y php php-pgsql && \    apt-get install -y php-gd && \    apt-get install -y php-intl && \    apt-get install -y php-simplexml && \    apt-get install -y php-zip && \    apt-get install -y php-imap && \    apt-get -y install php-ldap && \    apt install -y php-mbstring && \    apt-get install unzip && \    rm -rf /var/lib/apt/lists/* # Set workdirWORKDIR /app # Prepare limesurveyCOPY limesurvey*.zip /homeRUN mkdir /app/tmpRUN unzip /home/* -d /appRUN mkdir /tmp/tmpRUN mkdir /tmp/uploadRUN mkdir /tmp/configRUN cp -r /app/limesurvey/tmp /tmpRUN cp -r /app/limesurvey/upload /tmpRUN cp -r /app/limesurvey/application/config /tmpRUN chmod -R 755 /app/limesurvey/tmp; chown -R $(id -u):$(id -g) /app/limesurvey/tmpRUN chmod -R 755 /app/limesurvey/upload; chown -R $(id -u):$(id -g) /app/limesurvey/uploadRUN chmod -R 755 /app/limesurvey/application/config; chown -R $(id -u):$(id -g) /app/limesurvey/application/config # Expose the PHP server port (default is 80)EXPOSE 80
I have included chmod for the /app/limesurvey/application/config folder however I am still facing this error any advice?

Your LimeSurvey version: 6.4.0+231218 
Own server or LimeSurvey hosting: own server IIS 10 + PHP 8.1.22.
Survey theme/template: Bootswatch
==================
I have installed this third party plugin github.com/BDSU/limesurvey-oauth2 after modifying the config.xml file in the zip file to add version 6.
Authentication is working (I get a token and LimeSurvey creates a session), but I get stuck into infinite loops between /index.php?r=admin/authentication/sa/login which redirects to OAuth server which redirects to  survey-uat.cbre.fr/index.php?r=admin%2fa...n%2fsa%2flogin&code= ... which redirects to /index.php?r=admin which redirect to /index.php?r=admin/authentication/sa/login which redirect to OAuth server and so on...

I don't know what's causing the issue since the plugin code looks OK compared to native LDAP and Webserver plugins. If I block the redirection after newUserSession successful execution, I can dump the cookies and session variables and everything looks OK. I can even navigate manually to /index.php?r=surveyAdministration/listsurveys and I'm authenticated.

Do you have any idea about what could cause the issue?

I'm posting this here since the plugin does not seems actively developed and the issue may not be the plugin since the OAuth authentication is working.

By the way, it would be great to have native SAML and OAuth2in Limesurvey.

DenisChenu wrote:

OpenStudio wrote:

1. how are the data encrypted in the database? because I am trying to integrate it in my own dashboard, and I need to to manipulate the data directly from php/mysql - but for example the email, etc.. are encrypted using the secret key (but I don't know the method)

Then don't encrypt it.

OpenStudio wrote:

2. where can I find the list of authentication plugins? because I cannot use LDAP/Shibboleth and I don't have Wordpress. May you help me?

Best is to know what method do you have currently.

The solution has been given in the meaning in another post - forums.limesurvey.org/forum/development/...ption?start=0#253700

DenisChenu wrote:

OpenStudio wrote:

2. where can I find the list of authentication plugins? because I cannot use LDAP/Shibboleth and I don't have Wordpress. May you help me?

Best is to know what method do you have currently.

Currently I have a users table with username, email, password fields and my login system is handled with $_SESSION variables. Please tell me if you need any extra info, thanks in advance!