LDAP stands for Lightweight Directory Access Protocol. It is a protocol typically used for accessing an existing user database, stored in an LDAP server. This is useful when b2evolution is used in an enterprise where hundreds/thousands of user accounts are already created in a central LDAP Server (See also: Intranet setup).
b2evolution, can connect to and leverage an LDAP directory by using the LDAP Plugin.
For testing, an easy to install Directory Server is: http://directory.apache.org
- If you use Google Analytics, you may want to read their section about Tracking Multiple Domains and more specifically: http://support.google.com/analytics/bin/answer.py?hl=en&answer=1034342&topic=2772342&ctx=topic
Using b2evolution on an intranet isn’t much different from a regular internet installation. However, in some cases there might be specifics, which we will list below.
The installer screen has a checkbox for intranet installs. Make sur to check it, it will preconfigure some things correctly for you.
Server behind a firewall
If your b2evolution server is behind a firewall, it will not be able to periodically "call home" and check if there are updates (especially security patches) that can be applied. This will result in timeouts (typically 60 seconds) every time you access the back-office and periodically on the front-office.
We would recommend you let b2evolution ping out (through port 80), but if that is not an option, you can disable these pings by adding the following in one of your configuration files, for example at the end of
$allow_evo_stats = false;
Additionally, there are some plugins that ping the world (blog directories, twitter, etc..) to let the world know when you have just published a new post. Make sure you disable/uninstall these ping plugins or they will also generate unwanted timeouts.
Finally, you may also want to delete the "Poll the antispam blacklist" scheduled task, as it will not be able to fetch the anti spam updates from the central black list.
Users behind a firewall
Some versions of b2evolution load common libraries such as jQuery, Bootstrap or Font-Awesome from their public Content Distribution Networks (CDNs) in order to optimize load times (the idea is that these libraries are so common that they are probably already in the users’ browser cache.
If you cannot allow access to these CDNs, then you can change the b2evolution configuration to load all its libraries locally.
There is a setting in
/conf/_advanced.phpto disable CDN use:
/** * Would you like to use CDNs as definied in the array $library_cdn_urls below * or do you prefer to load all files from the local source as defined in the array $library_local_urls below? * * @global boolean $use_cdns */ $use_cdns = true;
Change this to :
$use_cdns = false;
Disabling AJAX comment forms
By default, b2evolution has a paranoid approach against comment SPAM. Therefore, comment forms are loaded through AJAX by default. This makes life harder for spambots.
On an intranet, you typically don’t have to worry about spambots, so you may turn off AJAX forms which will slightly enhance performance.
Disabling encrypted logins
Gravatar will fall back to loading a default image from your server, which may have a private intranet address and will fail. Therefore, it’s best to disable gravatar for user profile pictures when using b2evolution in an intranet setup.
Single Sign-On / LDAP
If you already have a user base configured on a Directory Server, you can access it by LDAP Integration instead of having to manually re-create usr accounts on b2evolution.
In order to do this, just download and install the LDAP Plugin. (Make sure you obtain the latest version.)
Using a Reverse Proxy
A reverse proxy will often translate URLs in 2 directions. If you can avoid that by having only IP translation, things will be easier.
We will try to list typical URL translation issues here. If you find more, please leave a comment.