Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ldap: Add user DN attributes list config param #19758

Merged
merged 2 commits into from
May 24, 2024
Merged

ldap: Add user DN attributes list config param #19758

merged 2 commits into from
May 24, 2024

Conversation

donatello
Copy link
Member

@donatello donatello commented May 16, 2024
edited

Description

This change uses the updated ldap library in minio/pkg (which was bumped
up to v3). New config parameter is added for LDAP configuration to
specify extra user attributes to load from the LDAP server and to store
it as additional claims for the user.

A test is added in sts_handlers.go that shows how to access the LDAP
attributes as a claim.

This is in preparation to add SSH pubkey authentication to MinIO's SFTP
integration.

Motivation and Context

How to test this PR?

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Optimization (provides speedup with no functional changes)
  • Breaking change (fix or feature that would cause existing functionality to change)

Checklist:

  • Fixes a regression (If yes, please add commit-id or PR # here)
  • Unit tests added/updated
  • Internal documentation updated
  • Create a documentation update request here

@donatello donatello mentioned this pull request May 16, 2024
Merged
@donatello donatello force-pushed the ldap-attribs branch 9 times, most recently from e815d6b to 88e1ac3 Compare May 21, 2024 16:37
@donatello donatello marked this pull request as ready for review May 21, 2024 18:25
zveinn
zveinn approved these changes May 21, 2024
View reviewed changes
go.mod Outdated Show resolved Hide resolved
taran-p
taran-p approved these changes May 22, 2024
View reviewed changes
Copy link
Contributor

@taran-p taran-p left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good once console is updated

@harshavardhana
Copy link
Member

Waiting to be merged with relevant go.mod changes.

@donatello
Copy link
Member Author

Updated PR with tag for minio/pkg/v3 but still needs console update + release.

@harshavardhana harshavardhana mentioned this pull request May 24, 2024
Merged
8 tasks
harshavardhana
harshavardhana reviewed May 24, 2024
View reviewed changes
go.mod Outdated Show resolved Hide resolved
harshavardhana
harshavardhana requested changes May 24, 2024
View reviewed changes
go.mod Outdated Show resolved Hide resolved
@donatello donatello force-pushed the ldap-attribs branch 2 times, most recently from a91cd38 to ece80eb Compare May 24, 2024 21:21
@donatello
Bump up minio/pkg to v3
6fe82f8
@donatello
ldap: Add user DN attributes list config param
2b67108 
This change uses the updated ldap library in minio/pkg (which was bumped
up to v3). New config parameter is added for LDAP configuration to
specify extra user attributes to load from the LDAP server and to store
it as additional claims for the user.

A test is added in sts_handlers.go that shows how to access the LDAP
attributes as a claim.

This is in preparation to add SSH pubkey authentication to MinIO's SFTP
integration.
@harshavardhana harshavardhana merged commit 5f78691 into minio:master May 24, 2024
20 checks passed
@donatello donatello deleted the ldap-attribs branch May 24, 2024 23:30
@zveinn zveinn mentioned this pull request May 27, 2024
Closed
8 tasks
@djwfyi djwfyi mentioned this pull request May 28, 2024
Open
1 task
@zveinn zveinn mentioned this pull request May 29, 2024
Open
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@harshavardhana harshavardhana harshavardhana approved these changes

@zveinn zveinn zveinn approved these changes

@taran-p taran-p taran-p approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@donatello @harshavardhana @zveinn @taran-p