GitLab

Created by: sibprogrammer

Need to have an ability to integrate LDAP (ActiveDirectory) w/o knowledge of system account. It's possible if we use bind, instead of search.

Here is a simple piece of code that allows to do this:

require 'net/ldap'

ldap = Net::LDAP.new(:host => "something.com")
ldap.auth "DOMAIN\\user-login", "****"

if ldap.bind
  # ok, let's login
else
  # fail
end

But I'm not familiar w/ omniauth and don't know how to make it work in expected way.

Parameters that are obtained by look up may be defined in config in case of "bind" usage. For example: host, domain, email_pattern