Wiki source code of LDAP-E-Mail-Verschlüsselungsplugin
Show last authors
| author | version | line-number | content |
|---|---|---|---|
| 1 | [[**Plugin download**>>url:https://customer.formcycle.eu/index.php/apps/files/?dir=/FORMCYCLE%20-%20Plugins%20Customer/fc-plugin-ldap-mail-encryption&fileid=13400||target="_blank"]] (requires login) | ||
| 2 | |||
| 3 | {{content/}} | ||
| 4 | |||
| 5 | {{figure image="plugin_ldap_mail_encryption_config_en.png" width="600"}} | ||
| 6 | You need to enter an {{smallcaps}}Ldap{{/smallcaps}} server that contains the certificate of the recipient. You also need to specify which attributes contain the email address and the binary data of the certificate. | ||
| 7 | {{/figure}} | ||
| 8 | |||
| 9 | The [[email action>>doc:Formcycle.UserInterface.MyForms.WorkflowProcessing.Actions.EMail]] lets you send encrypted emails via the S/MIME protocol. This requires a certificate of the recipient that contains the encryption key. This plugin lets you read that certificate from an {{smallcaps}}Ldap{{/smallcaps}} server. It looks for an entry (person) in the {{smallcaps}}Ldap{{/smallcaps}} directory based on the email of the recipient. If an entry is found, the certificate is read from a freely configurable attribute of that entry. This plugin is subject to additional charge. | ||
| 10 | |||
| 11 | Once this plugin is installed, you need to configure an {{smallcaps}}Ldap{{/smallcaps}} server and also specify the attributes that contain the email and certificate. | ||
| 12 | |||
| 13 | When necessary, you can also configure multiple {{smallcaps}}Ldap{{/smallcaps}} servers. To do so, you need to add additional configuration parameters with an appropriate index, such as //connection.data.2.base.dn// or //connection.data.3.base.dn//. | ||
| 14 | |||
| 15 | == Configuration == | ||
| 16 | |||
| 17 | The following configuration parameters are available: | ||
| 18 | |||
| 19 | ; connection.data.<INDEX>.host (required) | ||
| 20 | : The host name of the {{smallcaps}}Ldap{{/smallcaps}} server, without the port and protocol. | ||
| 21 | : Beispiel: {{code language="none"}}directory.bayern.de{{/code}} | ||
| 22 | ; connection.data.<INDEX>.port (required) | ||
| 23 | : The port of the {{smallcaps}}Ldap{{/smallcaps}} server. | ||
| 24 | : Beispiel: {{code language="none"}}389{{/code}} | ||
| 25 | ; connection.data.<INDEX>.base.dn (required) | ||
| 26 | : The base domain for the {{smallcaps}}Ldap{{/smallcaps}} search. | ||
| 27 | : Beispiel: {{code language="none"}}ou=pki-teilnehmer,dc=pki,dc=bayern,dc=de{{/code}} | ||
| 28 | ; connection.data.<INDEX>.attribute.email (required) | ||
| 29 | : The attribute of an entry in the active directory that contains the email address. | ||
| 30 | : Beispiel: {{code language="none"}}mail{{/code}} | ||
| 31 | ; connection.data.<INDEX>.attribute.certificate (required) | ||
| 32 | : The attribute of an entry in the active directory that contains the certificate. It must be an X-509 certificate. | ||
| 33 | : Beispiel: {{code language="none"}}userCertificate{{/code}} | ||
| 34 | ; connection.data.<INDEX>.auth.name | ||
| 35 | : The username for establishing a connection to the {{smallcaps}}Ldap{{/smallcaps}} server. Leave empty if no authentication is required. | ||
| 36 | ; connection.data.<INDEX>.auth.password | ||
| 37 | : The password for establishing a connection to the {{smallcaps}}Ldap{{/smallcaps}} server. Leave empty if no authentication is required. | ||
| 38 | ; connection.data.<INDEX>.referral.hop.count (required) | ||
| 39 | : Maximum number of referrals that are followed. | ||
| 40 | ; connection.data.<INDEX>.use.ssl | ||
| 41 | : Either //true// or //false//. Whether the connection to the {{smallcaps}}Ldap{{/smallcaps}} server is encrypted and uses {{smallcaps}}Ssl{{/smallcaps}} or rather {{smallcaps}}Tls{{/smallcaps}}. | ||
| 42 | |||
| 43 | == Changelog | ||
| 44 | |||
| 45 | === 1.0.0 | ||
| 46 | |||
| 47 | * Initial release. |