Poco::OSP::Auth::AbstractLDAPAuthAdminService

struct LDAPParams

File Information

Library: OSP
Package: Auth
Header: Poco/OSP/Auth/AbstractLDAPAuthAdminService.h

Description

LDAP authentication parameters.

Variables

bindDN

std::string bindDN;

The bind DN for binding to the LDAP server, with the actual username replaced by a "%s" placeholder, e.g. "uid=%s,cn=users,dc=ldapserver,dc=appinf,dc=com".

extraAttributes

std::vector < std::pair < std::string, std::string >> extraAttributes;

The name pairs (mapping LDAP attribute to user attribute name) of a extra LDAP attributes to query from the LDAP server.

If non-empty, the values of these attributes are obtained when authenticating the user and can be obtained by calling getUserAttribute().

At most 8 attributes may be specified.

localUsers

std::string localUsers;

A regular expression for matching usernames that should not be queried via LDAP.

permissionAttribute

std::string permissionAttribute;

The LDAP attribute used for storing permission values. Can be empty if permissions are not provided via LDAP.

roleAttribute

std::string roleAttribute;

The LDAP attribute used for storing role assignments. Can be empty if roles are not provided via LDAP.

Only used if also a permissionAttribute is given.

searchBase

std::string searchBase;

The search base for querying LDAP attributes. Usually equal to bindDN.

timeout

int timeout;

The timeout in seconds for binding to the LDAP server.

uri

std::string uri;

URI of the LDAP server, e.g. "ldap://localhost".