mirror of
https://github.com/octoleo/syncthing.git
synced 2024-12-23 03:18:59 +00:00
48f9d323fa
This adds the functionality to run a user search with a filter for LDAP authentication. The search is done after successful bind, as the binding user. The typical use case is to limit authentication to users who are member of a group or under a certain OU. For example, to only match users in the "Syncthing" group in otherwise default Active Directory set up for example.com: <searchBaseDN>CN=Users,DC=example,DC=com</searchBaseDN> <searchFilter>(&(sAMAccountName=%s)(memberOf=CN=Syncthing,CN=Users,DC=example,DC=com))</searchFilter> The search filter is an "and" of two criteria (with the ampersand being XML quoted), - "(sAMAccountName=%s)" matches the user logging in - "(memberOf=CN=Syncthing,CN=Users,DC=example,DC=com)" matches members of the group in question. Authentication will only proceed if the search filter matches precisely one user. |
||
---|---|---|
.. | ||
testdata | ||
authmode.go | ||
commit_test.go | ||
config_test.go | ||
config.go | ||
debug.go | ||
deviceconfiguration.go | ||
folderconfiguration.go | ||
foldertype.go | ||
guiconfiguration.go | ||
ldapconfiguration.go | ||
ldaptransport.go | ||
migrations_test.go | ||
migrations.go | ||
observed.go | ||
optionsconfiguration.go | ||
pullorder.go | ||
size_test.go | ||
size.go | ||
tuning_test.go | ||
tuning.go | ||
versioningconfiguration.go | ||
wrapper.go |