Forwarding a report to the old mod_shared_roster_ldap bug tracker filed by Jon Snyder (firstname.lastname@example.org) on 2010-09-09 05:58
Note that the diff is against the old codebase, but should be easy to port.
Depending on the LDAP server used, it can be difficult to specify exactly what groups should be the shared roster groups. In Active Directory, it can be difficult to use an LDAP filter to only select certain groups.
It would be easier to create a new container in the directory that has only the shared roster groups in it. Thus, there would be a new configuration parameter, such as ldap_group_base, and when the list of groups is retrieved, this LDAP base would be used.
A diff to accomplish this: