From dbb7e5464b6a9cad430b2f36b52e7674211f51cf Mon Sep 17 00:00:00 2001
From: aboron <aboron@users.noreply.github.com>
Date: Mon, 29 May 2017 22:33:50 -0400
Subject: ldap: add check for group membership (#4398)

* Add standard LDAP group membership checking.

* Fix formatting, typo, grammer, and syntax errors

* Debugging done.
Gave up on locale file edits.
---
 pkg/auth/ldap/README.md | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

(limited to 'pkg/auth/ldap/README.md')

diff --git a/pkg/auth/ldap/README.md b/pkg/auth/ldap/README.md
index 3a3e0204..b8c95b3b 100644
--- a/pkg/auth/ldap/README.md
+++ b/pkg/auth/ldap/README.md
@@ -99,3 +99,21 @@ share the following fields:
       matching parameter will be substituted with the user's username.
     * Example: (&(objectClass=posixAccount)(cn=%s))
     * Example: (&(objectClass=posixAccount)(uid=%s))
+
+**Verify group membership in LDAP** uses the following fields:
+
+* Group Search Base (optional)
+    * The LDAP DN used for groups.
+    * Example: ou=group,dc=mydomain,dc=com
+
+* Group Name Filter (optional)
+    * An LDAP filter declaring how to find valid groups in the above DN.
+    * Example: (|(cn=gogs_users)(cn=admins))
+
+* User Attribute in Group (optional)
+    * Which user LDAP attribute is listed in the group.
+    * Example: uid
+
+* Group Attribute for User (optional)
+    * Which group LDAP attribute contains an array above user attribute names.
+    * Example: memberUid
-- 
cgit v1.2.3