Installation

The EionetLDAP package needs to be installed in the Products folder of a Zope instance. You can create an EionetLDAP object anywhere, with any name; it should find acl_users and MailHost (see Dependencies below) by itself. You can customize the noreply e-mail address and e-mail templates from the Properties tab.

For Zope 2.8: make sure the eea folder is on the Python path, so that eea.userseditor can be imported. Copy or symlink the Products/EionetUsersEditor folder into a Zope product folder (e.g. the Products folder inside INSTANCE_HOME).

For Zope 2.10 and newer: make sure eea.userseditor and Products.EionetUsersEditor can be imported. Zope will automatically find and load the product at startup.

From ZMI you can now add an Eionet Users Editor object.

Page templates in this package expect the Eionet default layout at /styles and jQuery at /styles/jquery-1.4.4.min.js; it also uses the macro at /standard_template.pt.

Development

There are two components: an LDAP agent, and a user-interface Zope2 object subclassed from SimpleItem. Templates are rendered using the Zope3 template engine, so be careful, they make no security checks.

Both modules are covered by unit tests in the tests folder. To run them you need mock, lxml and BeautifulSoup; nose is highly recommended. In a buildout environment you could set up a test runner like so:

[nosetests]
recipe = zc.recipe.egg
scripts = nosetests
eggs =
    nose
    mock
    lxml
    beautifulsoup4
    eea.userseditor
extra-paths = ../zopes/2.10.12/lib/python

2.6 - (2021-04-09)

• remove dependency on validate_email [dumitval]
• re-allow NFPs to edit users from orgs of their country [dumitval]

2.5 - (2021-01-09)

• remove NFP edit permission on "own country" users [dumitval]
• move _is_authenticated to eea.ldapadmin.logic_common [dumitval]
• move _get_ldap_agent eea.ldapadmin.ldap_config [dumitval]
• move logged_in_user, nfp_for_country to eea.ldapadmin.ui_common [dumitval]
• removed _get_user_id duplicate of logged_in_user [dumitval]
• give NFPs access to the details page of disabled users [dumitval]
• remove obsolete Circa-related code [dumitval]
• fix tests [dumitval]

2.4 - (2020-12-04)

• add some privileges for NFPs on the user details page [valipod]

2.3 - (2020-05-13)

• Change: Tests and Linters [valipod]

2.2 - (2020-03-03)

• Change: Add jenkins badges [valentinab25]

2.1 - (2020-02-26)

• Feature: updated Jenkins pipeline [alecghica refs #110159]

2.0 (2020-02-13)

• fix fetching of error message [dumitval]
• remove unused import [dumitval]
• Fix decode error on user details page [dumitval]
• bugfix in days since password expired computation [dumitval]
• protect user photo (view) [dumitval]
• add jquery_ui for the datepicker [dumitval]
• remove old links to jquery [dumitval]
• bugfix in current role listing on user details [dumtival]
• use select2 instead of selectize [dumitval]
• Switch UserDetails default view to browser view [tiberich]
• allow members of eea or eionet roles to view roles of other members
• fix for mandatory status of reasonToCreate in profile editor [dumitval]
• handle deleted users in the Account changelog [dumitval]
• get password max age from the dedicated LDAP user [dumitval]
• bind with special user credentials on Eionet User Editor (no longer using authenticated user's credentials) [dumitval]

1.1.38 (2019-03-05)

• add and use bind credentials for unrestricted search [dumitval]

1.1.37 (2018-06-12)

• avoid crash if uid is not sent to the user details page [dumitval]

1.1.36 (2018-04-27)

• add secondary ldap bind auth for unlimited search [dumitval]

1.1.35 (2018-03-14)

• raise NotFound for disabled users (user directory) [dumitval]

1.1.34 (2018-02-12)

• show the date of the last password change in user details page [dumitval refs #92555]

1.1.33 (2018-02-09)

• clearly mark an invalid organisation setting on user details [dumitval]

1.1.32 (2017-06-19)

• password reset supports stricter password policy in ldap [dumitval]

1.1.31 (2016-11-22)

• add os environ to zope environment [dumitval]

1.1.30 (2016-11-21)

• Bug fix: fixed for users changing Organisation [dumitval]

1.1.29 (2016-10-10)

• show roles at the time a user was disabled [dumitval]

1.1.28 (2016-10-03)

• add organisation title in national language to the organisation selection list [dumitval]
• add Organisation title (if valid link available) and Department to the user details page [dumitval]

1.1.27 (2015-11-24)

• fix crash in user details when organisation from user's history was deleted [dumitval]

1.1.26 (2015-06-08)

• Bug fix: fixed user profile editor for missing organisation field [tiberich #26247]

1.1.25 (2015-05-19)

• Bug fix: call agent._get_metadata with userdn, not user id [tiberich]

1.1.24 (2015-04-14)

• is_manager replaced by can_edit_users, bound to permission, not role [dumitval]

1.1.23 (2015-03-30)

• Change: use bind=True in operations to allow retrieving the email address [tiberich #24362]

1.1.22 (2015-01-15)

• Bug fix: lineup arrows indicators in changelog with the rest of the text [tiberich #20422]
• Bug fix: don't show a user as disabled if he's not really disabled [tiberich #22487]

1.1.21 (2014-10-10)

• Bug fix: removed the visual icon ids, replaced them with some simple arrows [tiberich #20422]

1.1.20 (2014-09-24)

• Feature: added RESET_ACCOUNT view for the changelog [tiberich #9164]

1.1.19 (2014-09-19)

• Added method to retrieve user organisation membership [tiberich #20832]

1.1.18 (2014-07-15)

• Bug fix: fix case when editing user profile and an Organisation Editor was not found [tiberich #19143]

1.1.17 (2014-07-03)

• Bug fix: remove all organisations for a user before changing his organisation [tiberich #19143]

1.1.16 (2014-07-02)

• Bug fix: use the organisation membership for a member when showing his organisation in the edit form, instead of the 'o' field [tiberich #19143]

1.1.15 (2014-07-02)

• Bug fix: use the groupware standard_template when Zope is a Naaya groupware application [tiberich #19143]

1.1.14 (2014-07-01)

• Bug fix: don't fail when removing user from org if user is not in org [tiberich #19143]

1.1.13 (2014-07-01)

• Bug fix: use alternate agent to avoid insufficient permissions to perform LDAP operations [tiberich #19143]

1.1.12 (2014-07-01)

• Bug fix: remove user from old org when changing his organisation [tiberich #19143]

1.1.11 (2014-06-30)

• Feature: allow users to select their organisation from a list [tiberich #19143]

1.1.10 (2014-06-16)

• Bug fix: use the proper author name based on logged in user in changelog for user operations [tiberich #20081]

1.1.9 (2014-06-16)

• Bug fix: display the proper organisation name in changelog [tiberich #20081]

1.1.8 (2014-06-16)

• Bug fix: added views for the ADD_PENDING_TO_ORG changelog action [tiberich #20081]

1.1.7 (2014-06-10)

• Bugfix related to the encoding of role descriptions [dumitval]

1.1.6 (2014-05-12)

• Bug fix: don't take into consideration "owner of role" when displaying history of roles [tiberich #19565]

1.1.5 (2014-05-9)

• Bug fix: don't fail on user details page - history when encountering roles that are not in the filtered roles list [tiberich]

1.1.4 (2014-03-07)

• added edit link for managers on user index [dumitval]
• Feature: added support for pending membership to organisations [tiberich #15263]
• Feature: improved log entry views by compacting multiple entries to single table row [tiberich #16665]

1.1.3 (2014-01-10)

• remove new password from confirmation mail [dumitval]

1.1.2 (2013-10-29)

• wording in templates [dumitval]

1.1.1 (2013-09-05)

• api change in eea.usersdb [simiamih refs #15628]

1.1.0 (2013-02-21)

• Feature: compare userprofiles [simiamih]
• Feature: object to display Eionet Member public page [simiamih]

1.0.3 (2012-10-29)

• removed Circa encoding validation [simiamih]

1.0.2 (2012-07-19)

• Bug fix: fixed circa agent _user_id call [simiamih]

1.0.1 (2012-07-19)

• Send mail when changing password [bogdatan]

1.0.0 (2012-06-22)

• "EIONET" string configurable by env "NETWORK_NAME" [simiamih]
• updating info in legacy ldap for nonexisting user fails silently [simiamih]