ldap: add check for group membership (#4398)

* Add standard LDAP group membership checking. * Fix formatting, typo, grammer, and syntax errors * Debugging done. Gave up on locale file edits.
author: aboron <aboron@users.noreply.github.com> 2017-05-29 22:33:50 -0400
committer: 无闻 <u@gogs.io> 2017-05-29 22:33:50 -0400
commit: dbb7e5464b6a9cad430b2f36b52e7674211f51cf (patch)
tree: 8f201849432a65d3a58e04ef2c92b7eedfbf7a24 /pkg/auth/ldap/README.md
parent: 11ad64f6cbdc489a49247604fe697dffaa090ac2 (diff)
1 files changed, 18 insertions, 0 deletions
diff --git a/pkg/auth/ldap/README.md b/pkg/auth/ldap/README.md
index 3a3e0204..b8c95b3b 100644
--- a/pkg/auth/ldap/README.md
+++ b/pkg/auth/ldap/README.md
@@ -99,3 +99,21 @@ share the following fields:
       matching parameter will be substituted with the user's username.
     * Example: (&(objectClass=posixAccount)(cn=%s))
     * Example: (&(objectClass=posixAccount)(uid=%s))
+
+**Verify group membership in LDAP** uses the following fields:
+
+* Group Search Base (optional)
+    * The LDAP DN used for groups.
+    * Example: ou=group,dc=mydomain,dc=com
+
+* Group Name Filter (optional)
+    * An LDAP filter declaring how to find valid groups in the above DN.
+    * Example: (|(cn=gogs_users)(cn=admins))
+
+* User Attribute in Group (optional)
+    * Which user LDAP attribute is listed in the group.
+    * Example: uid
+
+* Group Attribute for User (optional)
+    * Which group LDAP attribute contains an array above user attribute names.
+    * Example: memberUid
author	aboron <aboron@users.noreply.github.com>	2017-05-29 22:33:50 -0400
committer	无闻 <u@gogs.io>	2017-05-29 22:33:50 -0400
commit	dbb7e5464b6a9cad430b2f36b52e7674211f51cf (patch)
tree	8f201849432a65d3a58e04ef2c92b7eedfbf7a24 /pkg/auth/ldap/README.md
parent	11ad64f6cbdc489a49247604fe697dffaa090ac2 (diff)