Alternative LDAP auth backend for airflow to support openLDAP installation without memberOf overlay
Readme
The default LDAP backend works with OpenLDAP if the memberOf overlay is
activated (see http://www.openldap.org/doc/admin24/overlays.html#Reverse%20Group%20Membership%20Maintenance)
I.e., users must present the memberOf attribute to know what group they
belong to. If your LDAP server only has groups with memberUid (or any
other key like member) listing the users belonging to the group, then
you need something different. This is what this module attemps to provide.
Using pip:
pip install airflow-alt-ldap
Activate authentication via this LDAP backend in airflow.cfg config:
[webserver]
authenticate = True
auth_backend = airflow-alt-ldap.auth.backend.ldap_auth
Then you can configure that module using the following keys (example conf to be adapted):
uri = ldap://localhost:389
user_basedn = ou=people,dc=nexmo,dc=com
user_filter = uid=*
user_name_attr = uid
group_basedn = ou=groups,dc=nexmo,dc=com
group_member_attr = memberUid
group_filter = cn=*
superuser_filter = cn=admingroup
data_profiler_filter = cn=datagroup
bind_user = uid=binddn,dc=example,dc=com
bind_password = MyAwesomePassword
# cacert = /etc/ca/ldap_ca.crt
# Set search_scope to one of them: BASE, LEVEL , SUBTREE
# Set search_scope to SUBTREE if using Active Directory, and not specifying an Organizational Unit
search_scope = SUBTREE
FAQs
Alternative LDAP auth backend for airflow to support openLDAP installation without memberOf overlay
We found that airflow-alt-ldap demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Git dependencies in open source packages can introduce significant risks, including lack of version control, stability issues, dependency drift, and difficulty in auditing, making them potential targets for supply chain attacks.
Security News
Node.js has added experimental support for TypeScript, a move that highlights the growing importance of TypeScript in modern development.
Product
Check out what's new at Socket with our Product Changelog. It tracks all public-facing updates, improvements, and fixes so you can take full advantage of our features.