Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for LDAP-based authentication #10

Open
paulmillar opened this issue Jun 18, 2024 · 2 comments
Open

Add support for LDAP-based authentication #10

paulmillar opened this issue Jun 18, 2024 · 2 comments

Comments

@paulmillar
Copy link
Contributor

I believe that ALISE currently only supports OIDC-based authentication. For facility-local authentication, this requires the facility deploying ALISE has a working OP, such as KeyCloak,

Although many facilities have an OP, there are also many facilities who have not done so.

Instead, these facilities often support RPs accepting username+password credentials directly. The username+password is verified by the RP contacting an LDAP service and authentication ("binding") to that LDAP service using a username+password credential. If the connection is established then the password is correct. The subsequent LDAP connection may be used to query additional information about the user (if needed by ALISE).

Therefore, it would be helpful if ALISE was updated to support LDAP-based authentication.
@paulmillar
Copy link
Contributor Author

To give a concrete example, KBFI use LDAP to authenticate users.

@paulmillar
Copy link
Contributor Author

In addition, a deployment at the CESGA facility would require LDAP-based authentication.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@paulmillar