providers/ldap: fix: Return user DN with virtual group (#1142)
* fix: incorrect ldap virtual group member DN Signed-off-by: Toboshii Nakama <toboshii@gmail.com> * fix: imports Signed-off-by: Toboshii Nakama <toboshii@gmail.com>
This commit is contained in:
parent
4fe0bd4b6c
commit
efa09d5e1d
|
@ -2,10 +2,10 @@ package ldap
|
|||
|
||||
import (
|
||||
"fmt"
|
||||
"strings"
|
||||
"math/big"
|
||||
"strconv"
|
||||
"reflect"
|
||||
"strconv"
|
||||
"strings"
|
||||
|
||||
"github.com/nmcclain/ldap"
|
||||
log "github.com/sirupsen/logrus"
|
||||
|
@ -94,7 +94,7 @@ func (pi *ProviderInstance) APIGroupToLDAPGroup(g api.Group) LDAPGroup {
|
|||
}
|
||||
|
||||
func (pi *ProviderInstance) APIUserToLDAPGroup(u api.User) LDAPGroup {
|
||||
dn := fmt.Sprintf("cn=%s,%s", u.Username, pi.GroupDN)
|
||||
dn := fmt.Sprintf("cn=%s,%s", u.Username, pi.UserDN)
|
||||
|
||||
return LDAPGroup{
|
||||
dn: dn,
|
||||
|
|
|
@ -55,7 +55,7 @@ The following fields are current set for groups:
|
|||
- "group"
|
||||
- "goauthentik.io/ldap/group"
|
||||
|
||||
A virtual group is also created for each user, they have the same fields as groups but have an additional objectClass: `goauthentik.io/ldap/group`.
|
||||
A virtual group is also created for each user, they have the same fields as groups but have an additional objectClass: `goauthentik.io/ldap/virtual-group`.
|
||||
The virtual groups gidNumber is equal to the uidNumber of the user.
|
||||
|
||||
**Additionally**, for both users and (non-virtual) groups, any attributes you set are also present as LDAP Attributes.
|
||||
|
|
Reference in a new issue