YunoHost-Apps/kanboard_ynh
1
0
Fork 0
mirror of https://github.com/YunoHost-Apps/kanboard_ynh.git synced 2024-09-03 19:36:17 +02:00
Code Issues Activity Actions
kanboard_ynh/sources/doc/ldap-group-sync.markdown
mbugeia 641c152ed9 Update to Kanboard v1.0.19
2015-10-14 15:56:24 +02:00

1.3 KiB
Raw Blame History

LDAP Group Synchronization

Requirements

  • Have LDAP authentication properly configured
  • Use a LDAP server that supports memberOf

Automatically define Kanboard groups based on LDAP groups

In your config file, define the constants LDAP_GROUP_ADMIN_DN and LDAP_GROUP_PROJECT_ADMIN_DN. Here an example, replace the values according to your own LDAP configuration:

define('LDAP_GROUP_ADMIN_DN', 'CN=Kanboard Admins,CN=Users,DC=kanboard,DC=local');
define('LDAP_GROUP_PROJECT_ADMIN_DN', 'CN=Kanboard Project Admins,CN=Users,DC=kanboard,DC=local');
  • People member of "Kanboard Admins" will be "Kanboard Administrators"
  • People member of "Kanboard Project Admins" will be "Kanboard Project Administrators"
  • Everybody else will be Kanboard Standard Users

Note: At the moment, that works only at account creation.

Filter Kanboard access based on the LDAP group

To allow only some users to use Kanboard, use the existing LDAP_USER_PATTERN constant:

define('LDAP_USER_PATTERN', '(&(objectClass=user)(sAMAccountName=%s)(memberOf=CN=Kanboard Users,CN=Users,DC=kanboard,DC=local))');

This example allow only people member of the group "Kanboard Users" to connect to Kanboard.