LookupUserDN - Code Search

internal/config/identity/ldap/ldap.go

	ldap "github.com/go-ldap/ldap/v3"
	"github.com/minio/minio-go/v7/pkg/set"
	"github.com/minio/minio/internal/auth"
	xldap "github.com/minio/pkg/v3/ldap"
)

// LookupUserDN searches for the full DN and groups of a given short/login
// username.
func (l *Config) LookupUserDN(username string) (*xldap.DNSearchResult, []string, error) {
	conn, err := l.LDAP.Connect()
	if err != nil {
		return nil, nil, err
	}
	defer conn.Close()

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Fri Jul 12 01:04:53 UTC 2024

- 12.4K bytes

- Viewed (0)

github.com/minio/minio

cmd/ftp-server-driver.go

			return nil, err
		}

		var mcreds *credentials.Credentials
		if errors.Is(err, errNoSuchServiceAccount) {
			lookupResult, targetGroups, err := globalIAMSys.LDAPConfig.LookupUserDN(ctx.Sess.LoginUser())
			if err != nil {
				return nil, err
			}
			ldapPolicies, _ := globalIAMSys.PolicyDBGet(lookupResult.NormDN, targetGroups...)
			if len(ldapPolicies) == 0 {

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Wed Aug 14 17:11:51 UTC 2024

- 14K bytes

- Viewed (0)

github.com/minio/minio

cmd/sftp-server.go

		if err != nil {
			return nil, err
		}

	} else if key != nil {

		lookupResult, targetGroups, err = globalIAMSys.LDAPConfig.LookupUserDN(user)
		if err != nil {
			return nil, err
		}

	}

	if lookupResult == nil {
		return nil, errNoSuchUser
	}

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Tue Aug 20 20:00:29 UTC 2024

- 16K bytes

- Viewed (0)

github.com/minio/minio

cmd/admin-handlers-idp-ldap.go

		isDN := globalIAMSys.LDAPConfig.ParsesAsDN(targetUser)
		opts.claims[ldapUserN] = targetUser // simple username
		var lookupResult *xldap.DNSearchResult
		lookupResult, targetGroups, err = globalIAMSys.LDAPConfig.LookupUserDN(targetUser)
		if err != nil {
			// if not found, check if DN
			if strings.Contains(err.Error(), "User DN not found for:") {
				if isDN {
					// warn user that DNs are not allowed

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Sat Sep 21 11:35:40 UTC 2024

- 19.1K bytes

- Viewed (0)

github.com/minio/minio

cmd/admin-handlers-users.go

		// query their groups:
		opts.claims[ldapUserN] = targetUser // simple username
		var lookupResult *xldap.DNSearchResult
		lookupResult, targetGroups, err = globalIAMSys.LDAPConfig.LookupUserDN(targetUser)
		if err != nil {
			writeErrorResponseJSON(ctx, w, toAdminAPIErr(ctx, err), r.URL)
			return
		}
		targetUser = lookupResult.NormDN
		opts.claims[ldapUser] = targetUser // username DN

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Thu Oct 03 23:11:02 UTC 2024

- 85.1K bytes

- Viewed (0)

github.com/minio/minio

cmd/site-replication.go

	// Extract the username and lookup DN and groups in LDAP.
	ldapUser, isLDAPSTS := claims.Lookup(ldapUserN)
	if isLDAPSTS {
		// Need to lookup the groups from LDAP.
		_, ldapGroups, err := globalIAMSys.LDAPConfig.LookupUserDN(ldapUser)
		if err != nil {
			return fmt.Errorf("unable to query LDAP server for %s: %w", ldapUser, err)
		}

		cred.Groups = ldapGroups
	}

	// Set these credentials to IAM.

Registered: Sun Nov 03 19:28:11 UTC 2024

- Last Modified: Thu Aug 15 12:04:40 UTC 2024

- 185.1K bytes

- Viewed (0)

Search Options

internal/config/identity/ldap/ldap.go

cmd/ftp-server-driver.go

cmd/sftp-server.go

cmd/admin-handlers-idp-ldap.go

cmd/admin-handlers-users.go

cmd/site-replication.go