You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I would like to ask if it would be possible to leverage existing LDAP authentication for specifying admin user. The current situation is that you can have all your user accounts (admin included) stored in LDAP, but you have to specify admin username and password by utilizing environment variables like ADMIN_LOGIN and ADMIN_PASSWORD. It would be very handy to leverage existing user database for that purpose.
To give you an example: in another application we are using there is a configuration option called Admin Filter that accepts values like (&(objectClass=posixAccount)(uid=%s)(memberOf=cn=calendar,ou=groups,dc=example,dc=com)). Any LDAP account that matches this filter is then considered to be an administrator account - simple and effective.
Thank you for your great application and have a nice day
Pavel
The text was updated successfully, but these errors were encountered:
It would be possible, yes, but it would need a bit of a rewrite for the admin auth part.
I'd gladly add the feature but I have no LDAP server to test this easily (and no extended expertise), so it's hard for me to have a clear path for this feature for now.
Hi,
I would like to ask if it would be possible to leverage existing LDAP authentication for specifying admin user. The current situation is that you can have all your user accounts (admin included) stored in LDAP, but you have to specify admin username and password by utilizing environment variables like
ADMIN_LOGIN
andADMIN_PASSWORD
. It would be very handy to leverage existing user database for that purpose.To give you an example: in another application we are using there is a configuration option called
Admin Filter
that accepts values like(&(objectClass=posixAccount)(uid=%s)(memberOf=cn=calendar,ou=groups,dc=example,dc=com))
. Any LDAP account that matches this filter is then considered to be an administrator account - simple and effective.Thank you for your great application and have a nice day
Pavel
The text was updated successfully, but these errors were encountered: