Skip to content

Navigation Menu

Sign in

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

[Security] Ability to add roles in form_login_ldap by ldap group #51225

New issue
Copy link
New issue
Copy link
Closed
#52181
Closed
[Security] Ability to add roles in form_login_ldap by ldap group#51225
#52181
Copy link
Labels
FeatureSecurity
@RTUnreal

Description

@RTUnreal
RTUnreal
opened on Aug 2, 2023
Issue body actions

Description

When a user logs in with a ldap dn, we need the ability to add roles by groups the user is a member of.

Example

security:
  providers:
    some_ldap:
      ldap:
        service: Symfony\Component\Ldap\Ldap
        base_dn: cn=Users,dc=example,dc=com
        search_dn: "cn=MyService,ou=Services,dc=example,dc=com"
        search_password: '%env(resolve:LDAP_PW)%'
        default_roles: ROLE_USER
        roles:
          'CN=Administrators,CN=Builtin,DC=example,DC=com': ROLE_ADMIN
        extra_fields: ['mail']

Which would result in a user with the a CN=Administrators,CN=Builtin,DC=example,DC=com membership to be assigned the ROLE_ADMIN role.

Metadata

Metadata

Assignees

No one assigned

    Labels

    FeatureSecurity

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions
      Morty Proxy This is a proxified and sanitized view of the page, visit original site.