LDAP directory connector for bitwarden_rs
Go to file
2019-03-30 19:53:17 -07:00
src Fix redirection on auth 2019-03-29 15:40:26 -07:00
.gitignore LDAP querying complete 2019-03-29 11:18:56 -07:00
Cargo.toml WIP: Add bw_rs client 2019-03-29 15:18:25 -07:00
docker-compose-ldap-server.yml LDAP querying complete 2019-03-29 11:18:56 -07:00
LICENSE Initial commit 2019-02-27 21:55:25 -08:00
README.md Update Readme with instructions 2019-03-30 19:53:17 -07:00

bitwarden_rs_ldap

A simple LDAP connector for bitwarden_rs

After configuring, simply run bitwarden_rs_ldap and it will invite any users it finds in LDAP to your bitwarden_rs instance.

Configuration

Configuration is read from a TOML file. The default location is config.toml, but this can be configured by setting the CONFIG_PATH env variable to whatever path you would like.

Configuration values are as follows:

Name Type Optional Description
bitwarden_url String The root URL for accessing bitwarden_rs. Eg: https://bw.example.com
bitwarden_admin_token String The value passed as ADMIN_TOKEN to bitwarden_rs
ldap_host String The hostname or IP address for your ldap server
ldap_scheme String Optional The that should be used to connect. ldap or ldaps. This is set by default based on SSL settings
ldap_ssl Boolean Optional Indicates if SSL should be used. Defaults to false
ldap_port Integer Optional Port used to connect to the LDAP server. This will default to 389 or 636, depending on your SSL settings
ldap_bind_dn String The dn for the bind user that will connect to LDAP. Eg. cn=admin,dc=example,dc=org
ldap_bind_password String The password for the provided bind user.
ldap_search_base_dn String Base dn that will be used when searching LDAP for users. Eg. dc=example,dc=org
ldap_search_filter String Filter used when searching LDAP for users. Eg. (&(objectClass=*)(uid=*))
ldap_mail_field String Optional Field for each user record that contains the email address to use. Defaults to mail
ldap_sync_interval_seconds Integer Optional Number of seconds to wait between each LDAP request. Defaults to 60

Future

  • Query existing users to avoid redundant invites
  • Command line flags to select if polling is desired
  • Any kind of proper logging
  • Tests