Sha256: 491fb4bc18f02a1a4350a7f7b38bd9d2adc6be728328892e425addfcc36ffaa7
Contents?: true
Size: 2 KB
Versions: 1
Compression:
Stored size: 2 KB
Contents
# frozen_string_literal: true module LdapAuthenticator LDAP_ATTRIBUTE_MAPPING = { 'name' => [:cn, :displayName], 'first_name' => [:givenName], 'last_name' => [:sn], 'email' => [:mail, :email, :userPrincipalName], 'nickname' => [:uid, :userid, :sAMAccountName], 'image' => [:jpegPhoto] } def send_ldap_request(user_params, provider_info) case provider_info[:auth_method] when 'anonymous' auth = { method: :anonymous } when 'user' auth = { method: :simple, username: provider_info[:uid] + '=' + user_params[:username] + ',' + provider_info[:base], password: user_params[:password] } else auth = { method: :simple, username: provider_info[:bind_dn], password: provider_info[:password] } end ldap = Net::LDAP.new( host: provider_info[:host], port: provider_info[:port], auth: auth, encryption: provider_info[:encryption] ) ldap_filter = Net::LDAP::Filter.eq(provider_info[:uid], user_params[:username]) if provider_info[:filter].present? ldap_filter = ldap_filter & Net::LDAP::Filter.construct(provider_info[:filter]) end ldap.bind_as( base: provider_info[:base], filter: ldap_filter, password: user_params[:password] ) end def parse_auth(result, role_field) auth = {} auth['info'] = {} auth['uid'] = result.dn auth['provider'] = :ldap LDAP_ATTRIBUTE_MAPPING.each do |key, value| value.each do |v| if result[v].first auth['info'][key] = result[v].first break end end end auth['info']['roles'] = result[role_field].first auth end end
Version data entries
1 entries across 1 versions & 1 rubygems
Version | Path |
---|---|
bn-ldap-authentication-0.1.3 | lib/bn-ldap-authentication.rb |