Extension:LDAP Authentication/Roadmap

Next version
I have a bad memory, and need a to-do list. If I have promised to add something for you in the next version, and it isn't in the list below, please add it.

v1.2d

 * Fix referencs to $ldapconn that should be $this->ldapconn in primary group code for AD (in SVN)
 * Fix User not loaded from session issue
 * Change behavior of locally managed groups to allow MediaWiki specific groups to be overridden
 * Fix the username-authentication issue once and for all (hopefully without nasty hacks)
 * Fix the issue where local users can't change their passwords
 * Add strictUserAuth support
 * Add support for automatic domain discovery
 * Refactor the code to handle configuration globals differently
 * Add an option for schema type, so that common options can be automatically configured
 * Fallback to defaults when certain options aren't set
 * Fix memberOf with memberOf overlays
 * Add check for non-returned data
 * Add $wgLDAPAllowLocalUsers and $wgLDAPRequiredUsers as a way to allow a list of local users (e.g., WikiSysop) and a list of LDAP users for access.

Possibly in a future version

 * Allow changes to LDAP groups via Special:Userrights
 * Support for choosing default search scope, and defining it for multiple domains.
 * Support for adding users/changing passwords in Active Directory.
 * Support for using LDAP as a complete user backend (including user options and such). Using ldap as a backend will require a custom schema to be loaded in the LDAP server.