Halaman utama Jelajahi Bantuan
Masuk
LBP
/
netbox
cermin dari https://github.com/netbox-community/netbox.git
2
0
Fork 0
Berkas Masalah 0 Wiki
Jelajahi Sumber

Load LDAP groups for API token authenticated users

When users are authenticated with an API token not all permissions where
assigned to the session because the LDAP group memberships where not
available.
Now the information is loaded from the directory if the user is found.
If not the local group memberships are used.
Tobias Genannt 4 tahun lalu
induk
4abfa6231c
melakukan
a3d40e3521
1 mengubah file dengan 10 tambahan dan 0 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 10 0
      netbox/netbox/api/authentication.py

+ 10 - 0
netbox/netbox/api/authentication.py
Tampilan Berkas 

@@ -25,6 +25,16 @@ class TokenAuthentication(authentication.TokenAuthentication):
 
         if not token.user.is_active:
 
             raise exceptions.AuthenticationFailed("User inactive")
 
 
+        # When LDAP authentication is active try to load user data from LDAP directory
 
+        if (settings.REMOTE_AUTH_ENABLED and
 
+                settings.REMOTE_AUTH_BACKEND == 'netbox.authentication.LDAPBackend'):
 
+            from netbox.authentication import LDAPBackend
 
+            ldap_backend = LDAPBackend()
 
+            user = ldap_backend.populate_user(token.user.username)
 
+            # If the user is found in the LDAP directory use it, if not fallback to the local user
 
+            if user:
 
+                return user, token
 
+
 
         return token.user, token