Skip to content
Snippets Groups Projects
Select Git revision
  • master default protected
  • intros
  • live_sources
  • bootstrap4
  • modules
5 results

ldap.py

Blame
    • Forked from Video AG Infrastruktur / website
    227 commits behind the upstream repository.
    Code owners
    Assign users and groups as approvers for specific file changes. Learn more.
    ldap.py 1.22 KiB
    1
    2
    3
    4
    5
    6
    7
    8
    9
    10
    11
    12
    13
    14
    15
    16
    17
    18
    19
    20
    21
    22
    23
    24
    25
    26
    27
    28
    29
    30
    31 
    

    

    

    from server import *
import re

LDAP_USERRE = re.compile(r'[^a-z0-9]')
if 'LDAP_HOST' in config:
	import ldap3

	def ldapauth(user, password):
		user = LDAP_USERRE.sub(r'', user.lower())
		try:
			conn = ldap3.Connection(ldap3.Server(config['LDAP_HOST'], port=config['LDAP_PORT'], use_ssl=True), 'fsmpi\\%s'%user, password, auto_bind=True, check_names=False)
		except ldap3.core.exceptions.LDAPBindError:
			return {}, []
		conn.search("cn=users,dc=fsmpi,dc=rwth-aachen,dc=de", "(cn=%s)"%user, attributes=['memberOf', 'givenName', 'sn'])
		info = {'uid': user, 'givenName': conn.response[0]['attributes']['givenName'][0], 'sn': conn.response[0]['attributes']['sn'][0]}
		groups = [g.split(',')[0].split('=')[-1] for g in conn.response[0]['attributes']['memberOf']]
		conn.unbind()
		return info, groups

else:
	notldap = {
		'videoag':('videoag', ['fachschaft','videoag'], {'uid': 'videoag', 'givenName': 'Video', 'sn': 'Geier'}),
		'gustav':('passwort', ['fachschaft'], {'uid': 'gustav', 'givenName': 'Gustav', 'sn': 'Geier'})
	}

	def ldapauth(user, password):
		user = LDAP_USERRE.sub(r'', user.lower())
		if config.get('DEBUG') and user in notldap and password == notldap[user][0]:
			return notldap[user][2], notldap[user][1]
		return {}, []