feat(3p/apereo-cas): add the LDAP DN to the list of attributes

Panettone currently uses the LDAP DN as the user key, so we collect it
here so that we can later make sure its exposed to Panettone.

Change-Id: Ia2048cb479a2afe6fe9f47181115ae7ec13dedf3
Reviewed-on: https://cl.tvl.fyi/c/depot/+/2811
Tested-by: BuildkiteCI
Reviewed-by: tazjin <mail@tazj.in>
Reviewed-by: glittershark <grfn@gws.fyi>
This commit is contained in:
Luke Granger-Brown 2021-04-03 20:47:55 +00:00 committed by lukegb
parent 85900e150e
commit 3e7073f106

View file

@ -22,10 +22,12 @@ cas.authn.saml-idp.entity-id=https://login.tvl.fyi
cas.authn.accept.users= cas.authn.accept.users=
cas.authn.attribute-repository.default-attributes-to-release=uid,mail,displayName cas.authn.attribute-repository.default-attributes-to-release=uid,mail,displayName,username,principalLdapDn
cas.authn.ldap[0].pool-passivator=NONE cas.authn.ldap[0].pool-passivator=NONE
cas.authn.ldap[0].principal-attribute-list=cn:uid,mail,displayName cas.authn.ldap[0].principal-attribute-list=cn:uid,mail,displayName,cn:username
cas.authn.ldap[0].collect-dn-attribute=true
cas.authn.ldap[0].principal-dn-attribute-name=principalLdapDn
cas.authn.ldap[0].ldap-url=ldap://localhost cas.authn.ldap[0].ldap-url=ldap://localhost
cas.authn.ldap[0].use-start-tls=false cas.authn.ldap[0].use-start-tls=false
cas.authn.ldap[0].validator.base-dn=dc=tvl,dc=fyi cas.authn.ldap[0].validator.base-dn=dc=tvl,dc=fyi