This project is a example to show how to authenticate Kuboard v4 via LDAP server.
Kuboard v4 has a Service Provider Interface to authenticate user and load user details info.
To run the example, you have to prepare:
- docker engine >= 20.01
-
Execute the following command in the source code root directory.
git clone https://github.com/eip-work/kuboard-v4-ldap-example.git cd kuboard-v4-ldap-example docker compose up -d -
Open the following url in your browser
http://localhost:8000
-
Login with admin user:
- username:
admin - password:
Kuboard123
- username:
-
Navigate to
系统设置->用户登录设置:
Navigate toSystem Settings->User Authentication SettingsMenu:
- Enable
启用外部用户 Webhook
EnableEnable External User Respository - Fill in
外部用户 Webhook
Fill inExternal User Respository Webhookwith valuehttp://ldap-example:9090/api/kuboard/example/ldap-users - Click
保存button
ClickSavebutton
- Enable
-
Logout with the button on the top right of the screen.
-
Login with Ldap user:
- username:
user01 - password:
password1
or
- username:
user02 - password:
password2
- username:
-
Navigate to
个人信息->所属分组:
Navigate toProfile->User GroupsMenu:
We can see that
user01derives two group bindings from webhook api,test-groupandgroup1. We could also get to know from menu个人信息->权限信息(Profile->Privileges) thatuser01has no privilege to do anything at the moment.To grant
user01with privileges, take the following actions:- Login with user
admin - Navigate to menu
用户与权限->用户组(Users and Roles->Groups) - Create a group named
test-group(orgroup1) - Bind the group with proper roles.
You can also grant
user01with privileges by taking following actions:- Login with user
admin - Navigate to menu
用户与权限->用户组(Users and Roles->Groups) - Click a existing group which has proper privileges
- Bind the group with user
user01
- Login with user
-
Execute the following command in the source code root directory.
docker build -t eipwork/kuboard-v4-ldap-example:v4 .