We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
master
With LDAP authentication, only direct groups of the connected user are collected to compute user roles.
Groups should be collected recursively to compute user roles (= groups of groups).
Tested with 83b5a60 version.
LDAP configuration:
AUTH_TYPE=LDAP SPRING_LDAP_URLS=ldaps://my.ldap.url SPRING_LDAP_USER_FILTER_SEARCH_BASE=cn=accounts,dc=my-company SPRING_LDAP_GROUP_FILTER_SEARCH_BASE=cn=accounts,dc=my-company SPRING_LDAP_USER_FILTER_SEARCH_FILTER=(&(uid={0})(objectClass=inetOrgPerson)) SPRING_LDAP_BASE=cn={0},dc=my-company SPRING_CONFIG_ADDITIONAL-LOCATION=/roles/roles.yaml
roles.yaml:
--- rbac: roles: - name: admin clusters: - main subjects: - provider: ldap type: group value: nestedgroup permissions: - resource: applicationconfig actions: all - resource: clusterconfig actions: all - resource: topic value: ".*" actions: all - resource: consumer value: ".*" actions: all - resource: schema value: ".*" actions: all - resource: connect value: ".*" actions: all - resource: ksql actions: all - resource: acl value: ".*" actions: [ view ]
No response
The text was updated successfully, but these errors were encountered:
Hello there RomainDubois! 👋
Thank you and congratulations 🎉 for opening your very first issue in this project! 💖
In case you want to claim this issue, please comment down below! We will try to get back to you as soon as we can. 👀
Sorry, something went wrong.
hey @RomainDubois, this repo is not maintained (#4255). But we'll be happy to accept your PR here: https://github.com/kafbat/kafka-ui
Will switch to https://github.com/kafbat/kafka-ui
No branches or pull requests
Issue submitter TODO list
master
-labeled docker image and the issue still persists thereDescribe the bug (actual behavior)
With LDAP authentication, only direct groups of the connected user are collected to compute user roles.
Expected behavior
Groups should be collected recursively to compute user roles (= groups of groups).
Your installation details
Tested with 83b5a60 version.
LDAP configuration:
roles.yaml:
Steps to reproduce
Screenshots
No response
Logs
No response
Additional context
No response
The text was updated successfully, but these errors were encountered: