Skip to content
Snippets Groups Projects
Commit cae5ada4 authored by Robin Sonnabend's avatar Robin Sonnabend
Browse files

Allow configuration of the LDAP server certificate

parent 451b41cd
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 9 additions and 2 deletions
auth.py
+ 9
2
View file @ cae5ada4
import ldap
import hmac, hashlib
import ssl
import ldap3
from ldap3.utils.dn import parse_dn
from datetime import datetime
......@@ -99,8 +100,14 @@ class LdapManager:
yield group.cn.value
class ADManager:
def __init__(self, host, domain, user_dn, group_dn, port=636, use_ssl=True):
self.server = ldap3.Server(host, port=port, use_ssl=use_ssl)
def __init__(self, host, domain, user_dn, group_dn,
port=636, use_ssl=True, ca_cert=None):
tls_config = ldap3.Tls(validate=ssl.CERT_REQUIRED)
if ca_cert is not None:
tls_config = ldap3.Tls(validate=ssl.CERT_REQUIRED,
ca_certs_file=ca_cert)
self.server = ldap3.Server(host, port=port, use_ssl=use_ssl,
tls=tls_config)
self.domain = domain
self.user_dn = user_dn
self.group_dn = group_dn
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment