gered/nginx-ldap-auth
Archived
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
This repository has been archived on 2023-07-11. You can view files and clone it, but cannot push or open issues or pull requests.
nginx-ldap-auth/config.sample.yaml
Tiago Augusto Pimenta 8c9485202c Draft
2018-10-17 21:37:22 -03:00

51 lines
1,010 B
YAML
Raw Permalink Blame History

web: 0.0.0.0:5555
path: /
message: "LDAP Login"
servers:
- ldaps://ldap1.example.com:636
- ldaps://ldap2.example.com:636
- ldaps://ldap3.example.com:636
auth:
bindDN: cn=seviceaccount,cn=users,o=company
bindPW: password
user:
baseDN: ou=users,o=company
filter: "(cn={0})"
attr: cn
group:
baseDN: ou=groups,o=company
filter: "(member={0})"
attr: cn
timeout:
success: 24h
group: 24h
wrong: 5m
rules:
- match:
- header: X-Sent-From
value: nginx-ingress-controller
- header: X-Auth-Request-Redirect
regex: "^/dashboard"
allow:
- group: SysAdmin
- group: AppAdmin
- group: Operator
- user: Jhon
deny:
- group: Guest
- match:
- header: X-Sent-From
value: nginx-ingress-controller
- header: X-Original-Method
value: GET
- header: X-Original-URL
regex: "^https?://server.domain/"
allow:
- group: Guest
- match:
- header: X-Sent-From
value: nginx-ingress-controller
- header: X-Auth-Request-Redirect
regex: /login
allowAnonymous: true
Reference in a new issue View git blame Copy permalink