Project

ldap_groups_lookup

0.0
Low commit activity in last 3 years
A long-lived project that still receives updates
ldap_groups_lookupiublibtech/ldap_groups_lookupHomepageDocumentationSource CodeBug TrackerWiki
Provides easy access to the list of LDAP groups a username is a member of.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
12,077
Stars
1
Forks
0
Watchers
11
 Releases
Current version
0.11.0
Total releases
9
First release
2018-06-19
Latest release
2024-11-21
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
7
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Average date of last 50 commits
2021-03-18
Reverse Dependencies
0

 Dependencies

Development

pry
>= 0
rake
>= 0
rspec
>= 0

Runtime

net-ldap
>= 0
 Project Readme

IU LDAP Groups Lookup

Gem Version

Usage

Adds an LDAPGroupsLookup that can be included in a a class to provide an #ldap_groups instance method:

class User
  attr_accessor :ldap_lookup_key
  include LDAPGroupsLookup::Behavior
end

u = User.new
u.ldap_lookup_key = 'some_username'
u.ldap_groups
u.member_of_ldap_group?(['Some-Group'])

The LDAP search will be run by the value of #ldap_lookup_key, so your instance object must provide that through some means:

class User < ActiveRecord::Base
  validates :username, presence: true, uniqueness: true
  alias_attribute :ldap_lookup_key, :username
  include LDAPGroupsLookup::Behavior
end

u = User.find_by(username: 'some_username')
u.ldap_groups
u.member_of_ldap_group?(['Some-Group'])

Configuration

Initializer

Create an initializer config/initializers/ldap_groups_lookup.rb that looks like:

LDAPGroupsLookup.config = {
  enabled: true,
  config: { host: 'ads.example.net',
            port: 636,
            encryption: {
              method: :simple_tls,
              tls_options: OpenSSL::SSL::SSLContext::DEFAULT_PARAMS,
            },
            auth: {
              method: :simple,
              username: "cn=example",
              password: 'changeme',
            }
  },
  tree: 'dc=ads,dc=example,dc=net',
  account_ou: 'ou=Accounts',
  group_ou: 'ou=Groups',
  member_allowlist: ['OU=Groups']
}

YAML

Alternatively, create a file config/ldap_groups_lookup.yml that looks like:

:enabled: true
:host: ads.example.net
:port: 389
:auth:
  :method: :simple
  :username: example
  :password: changeme
:tree: dc=ads,dc=example,dc=net
:account_ou: ou=Accounts
:group_ou: ou=Groups
:member_allowlist:
  - OU=Groups

Note: The yaml style does not allow for easy configuration of some properties like tls_options or other auth methods.