search

abs0lut3pwn4g3 / RTB-CTF-Framework

A fast, efficient and lightweight (~100 KB) Capture The Flag framework inspired by the HackTheBox platform. Built with Flask.
https://rtbctfframework.up.railway.app/
GNU Affero General Public License v3.0
108 stars 55 forks source link

LDAP integration #65

Closed Demaz93 closed 4 years ago

Demaz93 commented 4 years ago

Is your feature request related to a problem? For private usage like universities or organizations it could be hard ask to everyone to perform registration.

Describe the solution you'd like Could be awesome add the possibility to disable registration and add only ldap log-in using accounts available on university or organization infrastructure.

eshaan7 commented 4 years ago

Hi. Thanks for your interest. Do you have an example of how this could be useful ? To be clear, it seems like over-complicating. At the moment, one can create multiple admin users using the ORM or python CLI (complicated but that is done to keep it secure). Adding a separate auth mechanism will only introduce delays and errors and ultimately increases attack surface and is directly against the purpose of this project i.e. keeping the framework easy to deploy, lightweight, and features strictly what is necessary.