diff --git a/backend/internal/dto/app_config_dto.go b/backend/internal/dto/app_config_dto.go index f0646add..c0cbc9a8 100644 --- a/backend/internal/dto/app_config_dto.go +++ b/backend/internal/dto/app_config_dto.go @@ -36,6 +36,7 @@ type AppConfigUpdateDto struct { LdapAttributeUserEmail string `json:"ldapAttributeUserEmail"` LdapAttributeUserFirstName string `json:"ldapAttributeUserFirstName"` LdapAttributeUserLastName string `json:"ldapAttributeUserLastName"` + LdapAttributeGroupMember string `json:"ldapAttributeGroupMember"` LdapAttributeGroupUniqueIdentifier string `json:"ldapAttributeGroupUniqueIdentifier"` LdapAttributeGroupName string `json:"ldapAttributeGroupName"` LdapAttributeAdminGroup string `json:"ldapAttributeAdminGroup"` diff --git a/backend/internal/model/app_config.go b/backend/internal/model/app_config.go index 5da49b54..7a834f82 100644 --- a/backend/internal/model/app_config.go +++ b/backend/internal/model/app_config.go @@ -43,6 +43,7 @@ type AppConfig struct { LdapAttributeUserEmail AppConfigVariable LdapAttributeUserFirstName AppConfigVariable LdapAttributeUserLastName AppConfigVariable + LdapAttributeGroupMember AppConfigVariable LdapAttributeGroupUniqueIdentifier AppConfigVariable LdapAttributeGroupName AppConfigVariable LdapAttributeAdminGroup AppConfigVariable diff --git a/backend/internal/service/app_config_service.go b/backend/internal/service/app_config_service.go index c5e34710..b5667491 100644 --- a/backend/internal/service/app_config_service.go +++ b/backend/internal/service/app_config_service.go @@ -173,6 +173,11 @@ var defaultDbConfig = model.AppConfig{ Key: "ldapAttributeUserLastName", Type: "string", }, + LdapAttributeGroupMember: model.AppConfigVariable{ + Key: "ldapAttributeGroupMember", + Type: "string", + DefaultValue: "member", + }, LdapAttributeGroupUniqueIdentifier: model.AppConfigVariable{ Key: "ldapAttributeGroupUniqueIdentifier", Type: "string", diff --git a/backend/internal/service/ldap_service.go b/backend/internal/service/ldap_service.go index e0afe7fa..a8b652d6 100644 --- a/backend/internal/service/ldap_service.go +++ b/backend/internal/service/ldap_service.go @@ -70,12 +70,13 @@ func (s *LdapService) SyncGroups() error { baseDN := s.appConfigService.DbConfig.LdapBase.Value nameAttribute := s.appConfigService.DbConfig.LdapAttributeGroupName.Value uniqueIdentifierAttribute := s.appConfigService.DbConfig.LdapAttributeGroupUniqueIdentifier.Value + groupMemberOfAttribute := s.appConfigService.DbConfig.LdapAttributeGroupMember.Value filter := s.appConfigService.DbConfig.LdapUserGroupSearchFilter.Value searchAttrs := []string{ nameAttribute, uniqueIdentifierAttribute, - "member", + groupMemberOfAttribute, } searchReq := ldap.NewSearchRequest(baseDN, ldap.ScopeWholeSubtree, 0, 0, 0, false, filter, searchAttrs, []ldap.Control{}) @@ -99,7 +100,7 @@ func (s *LdapService) SyncGroups() error { s.db.Where("ldap_id = ?", ldapId).First(&databaseGroup) // Get group members and add to the correct Group - groupMembers := value.GetAttributeValues("member") + groupMembers := value.GetAttributeValues(groupMemberOfAttribute) for _, member := range groupMembers { // Normal output of this would be CN=username,ou=people,dc=example,dc=com // Splitting at the "=" and "," then just grabbing the username for that string diff --git a/frontend/src/lib/types/application-configuration.ts b/frontend/src/lib/types/application-configuration.ts index fc5976ad..4cac7767 100644 --- a/frontend/src/lib/types/application-configuration.ts +++ b/frontend/src/lib/types/application-configuration.ts @@ -31,6 +31,7 @@ export type AllAppConfig = AppConfig & { ldapAttributeUserEmail: string; ldapAttributeUserFirstName: string; ldapAttributeUserLastName: string; + ldapAttributeGroupMember: string; ldapAttributeGroupUniqueIdentifier: string; ldapAttributeGroupName: string; ldapAttributeAdminGroup: string; diff --git a/frontend/src/routes/settings/admin/application-configuration/forms/app-config-ldap-form.svelte b/frontend/src/routes/settings/admin/application-configuration/forms/app-config-ldap-form.svelte index ff7a6dec..79772a3e 100644 --- a/frontend/src/routes/settings/admin/application-configuration/forms/app-config-ldap-form.svelte +++ b/frontend/src/routes/settings/admin/application-configuration/forms/app-config-ldap-form.svelte @@ -38,6 +38,7 @@ ldapAttributeUserEmail: appConfig.ldapAttributeUserEmail, ldapAttributeUserFirstName: appConfig.ldapAttributeUserFirstName, ldapAttributeUserLastName: appConfig.ldapAttributeUserLastName, + ldapAttributeGroupMember: appConfig.ldapAttributeGroupMember, ldapAttributeGroupUniqueIdentifier: appConfig.ldapAttributeGroupUniqueIdentifier, ldapAttributeGroupName: appConfig.ldapAttributeGroupName, ldapAttributeAdminGroup: appConfig.ldapAttributeAdminGroup @@ -56,6 +57,7 @@ ldapAttributeUserEmail: z.string().min(1), ldapAttributeUserFirstName: z.string().min(1), ldapAttributeUserLastName: z.string().min(1), + ldapAttributeGroupMember: z.string(), ldapAttributeGroupUniqueIdentifier: z.string().min(1), ldapAttributeGroupName: z.string().min(1), ldapAttributeAdminGroup: z.string() @@ -98,8 +100,8 @@
+

Client Configuration

-

Client Configuration

+
+
{#if ldapEnabled}