symfony/symfonyPublic

NotificationsYou must be signed in to change notification settings
Fork9.6k
Star30.4k

[Security] Ability to add roles in`form_login_ldap` by ldap group #51225

New issue

Closed

#52181

Closed

[Security] Ability to add roles inform_login_ldap by ldap group#51225

#52181

Labels

FeatureSecurity

Description

RTUnreal

opened

on Aug 2, 2023

Description

When a user logs in with a ldap dn, we need the ability to add roles by groups the user is a member of.

Example

security:providers:some_ldap:ldap:service:Symfony\Component\Ldap\Ldapbase_dn:cn=Users,dc=example,dc=comsearch_dn:"cn=MyService,ou=Services,dc=example,dc=com"search_password:'%env(resolve:LDAP_PW)%'default_roles:ROLE_USERroles:'CN=Administrators,CN=Builtin,DC=example,DC=com':ROLE_ADMINextra_fields:['mail']

Which would result in a user with the aCN=Administrators,CN=Builtin,DC=example,DC=com membership to be assigned theROLE_ADMIN role.

Metadata

Assignees

No one assigned

Labels

FeatureSecurity

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

[Security] Ability to add roles in`form_login_ldap` by ldap group #51225

Description

Description

Example

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

Movatterモバイル変換

Uh oh!

[Security] Ability to add roles inform_login_ldap by ldap group #51225

Description

Description

Example

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

[Security] Ability to add roles in`form_login_ldap` by ldap group #51225