Skip to content
Snippets Groups Projects
Select Git revision
  • claims-in-idtoke
  • master default protected
  • jwt_encode_inconsistencies
  • recovery-code-pwhash
  • incremental-sync
  • redis-rate-limits
  • typehints
  • v1.2.x
  • v1.x.x
  • v1.1.x
  • feature_invite_validuntil_minmax
  • Dockerfile
  • v1.0.x
  • roles-recursive-cte
  • v2.3.1
  • v2.3.0
  • v2.2.0
  • v2.1.0
  • v2.0.1
  • v2.0.0
  • v1.2.0
  • v1.1.2
  • v1.1.1
  • v1.0.2
  • v1.1.0
  • v1.0.1
  • v1.0.0
  • v0.3.0
  • v0.2.0
  • v0.1.5
  • v0.1.4
  • v0.1.2
32 results
Compare
Forked from uffd / uffd
372 commits behind the upstream repository.
julian's avatar
basic ldap mocking
Julian authored 
LDAP_SERVICE_MOCK must be set to True to enable ldap mocking. As a
security measure, mocking is only allowed in debug mode. Also changed
ACL_ADMIN_GROUP and ACL_SELFSERVICE_GROUP in default_config.cfg to more
distinguishable values and removed the unused ACL_LDAP_GROUP_USEREDIT
entry.

The sample entries in ldap_server_entries.json are the bare minimum
required for mocking and most likely won't suffice on a real LDAP server.
Also ldap3's mocked server is very limited and does not correctly verify
hashed password, update group memberships or implement ldap
overlays/extentions correctly.

Closes #20
17892c4b
History
julian's avatar 17892c4b
History
Name Last commit Last update
uffd
.gitignore
.gitlab-ci.yml
.pylintrc
LICENSE
README.md
create_db.py
ldap_server_entries.json
ldap_server_info.json
ldap_server_schema.json
profiling.py
run.py
runTests.py
README.md

uffd

This is the UserFerwaltungsFrontend. A web service to manage LDAP users, groups and permissions.

dependencies

  • python3
  • python3-ldap3
  • python3-flask
  • python3-flask-sqlalchemy
  • git (cli utility, musst be in path)

development

During development, you may want to enable LDAP mocking, as you otherwise need to have access to an actual LDAP server with the required schema. You can do so by setting LDAP_SERVICE_MOCK=True in the config. Afterwards you can login as a normal user with "testuser" and "userpassword", or as an admin with "testadmin" and "adminpassword". Please note that the mocked LDAP functionality is very limited and many uffd features do not work correctly without a real LDAP server.

deployment

Use uwsgi.

python style conventions

tabs.

Impressum - Datenschutzerklärung