GitHub user karuturi opened a pull request:
https://github.com/apache/cloudstack/pull/755
Cloudstack:8647 LDAP Trust AD and Autoimport
Today, CloudStack can automatically import LDAP users based on the
configuration to a domain or an account. However, any new users in LDAP aren't
automatically reflected. The admin has to manually import them again.
This feature enables admin to map LDAP group/OU to a CloudStack domain and
any changes are reflected in ACS as well.
FS:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/WIP%3A+LDAP%3A+Trust+AD+and+Auto+Import
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/karuturi/cloudstack CLOUDSTACK-8647-2
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/cloudstack/pull/755.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #755
----
commit 0680648036044e5d9166a0d973b2c9f714a41778
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-04T11:14:58Z
CLOUDSTACK-8647: added cmd and response class for the new api
commit e3ddde841ed4b4ee588927394a2121fefd2d684c
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-06T11:42:24Z
CLOUDSTACK-8647 added new api linkLdapToDomain
also added the required dao, table and vo
commit 7109689fde9895d1e702544e4011de9eecc2c1a6
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-10T12:01:34Z
CLOUDSTACK-8647 changed the authentication flow
added check to see if domain is linked to ldap. If yes and the user is
member of the group/OU, authenticate and import user.
commit 0dc9ccd189682f82abd9ce1ab816213094b037db
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-11T06:37:44Z
CLOUDSTACK-8647 added account_type to the linkDomainToLdap API
commit 59291864fc893935294fc9a8ac60c6c537a7caff
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-11T08:57:55Z
CLOUDSTACK-8647 added nested group enabled config in ldap
querying the nested groups only when nested groups are enabled
commit 2825c07b38795ff541d4e9dc648612ce84fd728f
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-11T09:50:22Z
CLOUDSTACK-8647 support for assigning and admin to linked ldap domain
if an admin username is given to the linkDomainToLdap, added support to
import this user
User will be imported only if the user is available in the group/ou in
ldap and an account with the name doesnt exist in cloudstack.
on successful import, accountid will be returned in response.
commit 6cb5d3a3bc4c02071fb1b1005f9fd40b7468d6e3
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-12T05:12:11Z
CLOUDSTACK-8647: fixed unittests
commit dd6d6d18a588e7884385c74b98c635b487ea4e93
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-24T09:00:37Z
CLOUDSTACK-8647 unittests for LinkDomainToLdap api command
commit 6572abc7b3095d07d003498e06c85bef1fe9dfd9
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-24T11:21:36Z
CLOUDSTACK-8647 added unittests for new methods in ldapmanager
commit 36340d97bdecbb437dcbfd5ef30b49020ef681a5
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-27T09:11:37Z
CLOUDSTACK-8647: UI for trust AD feature
commit c2b36cb7059e91f6f5e9292cda4bb283017708cc
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-27T10:48:47Z
CLOUDSTACK-8647: formatted LdapAuthenticatorSpec
commit 1c836a8999a28ef8d6161600a3a29586b30cb532
Author: Rajani Karuturi <[email protected]>
Date: 2015-08-27T11:54:40Z
CLOUDSTACK-8647: unittests for LdapAuthenticatorSpec
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
