A simple drop-in HTTP proxy for transparent LDAP authorization which is also a HTTP auth backend.
LDAP auth proxy could be used in two modes: as an auth backend and as a proxy:
Example docker-compose
setup could be found in examples/auth_backend wh
and it's variation, proxy behind nginx:
Example docker-compose
setup could be found in examples/proxy
export LDAP_SERVER='ldaps://ldap.jumpcloud.com'
export LDAP_BASE='o=<oid>,dc=jumpcloud,dc=com'
export LDAP_BIND_DN='uid=<bind user name>,ou=Users,o=<oid>,dc=jumpcloud,dc=com'
export LDAP_BIND_PASSWORD='<bind user password>'
export LDAP_USER_FILTER='(uid=%s)'
export LDAP_GROUP_FILTER='(&(objectClass=groupOfNames)(member=uid=%s,ou=Users,o=<oid>,dc=jumpcloud,dc=com))'
export GROUP_HEADER='X-Ldap-Group'
export HEADERS_MAP='X-LDAP-Mail:mail,X-LDAP-UID:uid,X-LDAP-CN:cn,X-LDAP-DN:dn'
where <oid>
is your organisation id.
ldap-auth-proxy is licensed under the MIT license.