Skip to content
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.

Commit b3da200

Browse files
unknwonunknwon
committedMay 30, 2017
change log
1 parent b870057 commit b3da200

File tree

4 files changed

+38
-0
lines changed

4 files changed

+38
-0
lines changed
 

‎en-US/features/authentication.md

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -92,6 +92,24 @@ Both the LDAP via BindDN and the simple auth LDAP share the following fields:
9292
- Example: `(&(objectClass=posixAccount)(cn=%s))`
9393
- Example: `(&(objectClass=posixAccount)(uid=%s))`
9494

95+
**Verify group membership in LDAP** uses the following fields:
96+
97+
* Group Search Base (optional)
98+
* The LDAP DN used for groups.
99+
* Example: `ou=group,dc=mydomain,dc=com`
100+
101+
* Group Name Filter (optional)
102+
* An LDAP filter declaring how to find valid groups in the above DN.
103+
* Example: `(|(cn=gogs_users)(cn=admins))`
104+
105+
* User Attribute in Group (optional)
106+
* Which user LDAP attribute is listed in the group.
107+
* Example: `uid`
108+
109+
* Group Attribute for User (optional)
110+
* Which group LDAP attribute contains an array above user attribute names.
111+
* Example: `memberUid`
112+
95113
## PAM
96114

97115
To configure this you just need to set the 'PAM Service Name' to a filename in `/etc/pam.d/`.

‎en-US/intro/change_log.md

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -14,6 +14,7 @@ name: Changelog
1414
#### Features
1515

1616
- Support two-factor authentication [#945](https://github.com/gogits/gogs/issues/945)
17+
- Support filter by group membership for LDAP [#4398](https://github.com/gogits/gogs/pull/4398)
1718

1819
#### Improvements
1920

‎zh-CN/features/authentication.md

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -91,3 +91,21 @@ name: 授权认证
9191
form.
9292
- Example: `(&(objectClass=posixAccount)(cn=%s))`
9393
- Example: `(&(objectClass=posixAccount)(uid=%s))`
94+
95+
**验证组成员** 需要填充以下字段:
96+
97+
* 组搜索基准 DN(可选)
98+
* The LDAP DN used for groups.
99+
* Example: `ou=group,dc=mydomain,dc=com`
100+
101+
* 组名称过滤(可选)
102+
* An LDAP filter declaring how to find valid groups in the above DN.
103+
* Example: `(|(cn=gogs_users)(cn=admins))`
104+
105+
* 包含用户的组属性(可选)
106+
* Which group LDAP attribute contains an array above user attribute names.
107+
* Example: `memberUID`
108+
109+
* 组内用户属性(可选)
110+
* Which user LDAP attribute is listed in the group.
111+
* Example: `uid`

‎zh-CN/intro/change_log.md

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -14,6 +14,7 @@ name: 变更日志
1414
#### 新增特性
1515

1616
- 支持两步验证登录 [#945](https://github.com/gogits/gogs/issues/945)
17+
- 支持 LDAP 登录时验证组成员身份 [#4398](https://github.com/gogits/gogs/pull/4398)
1718

1819
#### 功能改进
1920

0 commit comments

Comments
 (0)
Please sign in to comment.