[OBS-2825] LDAP: Support custom memberOf attribute - Observium

Details

Type: Improvement
Resolution: Fixed
Priority: Trivial
Fix Version/s: None
Affects Version/s: Professional Edition
Component/s: Authentication
Labels:
- patch
- web
Environment:
Observium r9628

Description

The current LDAP authentication module in Observium does support custom names for a specific set of attributes (uid, uidNumber, cn, dn), but is lacking support for providing a custom attribute name for memberOf.

Our company is using a customized LDAP scheme which maps the users roles into one or more AppRoleDN attributes. This makes it currently impossible to properly use Observium, as the built-in user list always appears empty due to the inexistant memberOf attribute(s).

This patch adds a new configuration option $config['auth_ldap_attr']['memberOf'] which allows Observium to look for a different attribute name instead of the hardcoded memberOf attribute. It has been successfully tested in our environment against both stable and trunk.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

ldap_custom_memberof.diff
2018/11/23 10:03 AM
2 kB
Pascal Mathis

Issue Links

is mentioned by

OBS-2829 LDAP: Support reverse group membership lookup

Closed

Activity

[OBS-2825] LDAP: Support custom memberOf attribute

Tom Laermans added a comment - 2018/11/23 10:30 PM

Looks good to me, committed in r9630. Thanks!

Tom Laermans added a comment - 2018/11/23 10:30 PM Looks good to me, committed in r9630. Thanks!

People

Assignee:: Tom Laermans

Reporter:: Pascal Mathis

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2018/11/23 10:10 AM

Updated:: 2018/12/25 06:10 PM

Resolved:: 2018/11/23 10:30 PM