local dev: add group config for local ldap setup

- add example group setup for local ldap dev - with this config, users in the local ldap will be added to a group, and the integration with local UAA with pipe in the ldap group into UAA as scope, verbatim
cloudfoundry · Sep 19, 2024 · 8c290fc · 8c290fc
1 parent 5f6d3c9
commit 8c290fc
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 1 deletion.
diff --git a/scripts/ldap/docker-compose.yml b/scripts/ldap/docker-compose.yml
@@ -12,6 +12,7 @@ services:
       - LDAP_ADMIN_PASSWORD=password
       - LDAP_USERS=user01,user02
       - LDAP_PASSWORDS=password1,password2
+      - LDAP_GROUP=some-ldap-group
     volumes:
       - 'openldap_data:/bitnami/openldap'
 

diff --git a/uaa/src/main/resources/uaa.yml b/uaa/src/main/resources/uaa.yml
@@ -570,4 +570,14 @@ ldap:
     userDn: 'cn=admin,dc=test,dc=com'
     password: 'password'
     searchBase: 'dc=test,dc=com'
-    searchFilter: 'cn={0}'
+    searchFilter: 'cn={0}'
+  groups:
+    file: ldap/ldap-groups-as-scopes.xml
+    searchBase: 'dc=test,dc=com'
+    groupRoleAttribute: 'cn'
+    groupSearchFilter: 'member={0}'
+    searchSubtree: true
+    maxSearchDepth: 10
+    autoAdd: true
+  externalGroupsWhitelist:
+    - '*'