search

kvspb / nginx-auth-ldap

LDAP authentication module for nginx
BSD 2-Clause "Simplified" License
735 stars 252 forks source link

LDAP connection (connect/bind/request) configurable timeouts #67

Open lucamilanesio opened 9 years ago

lucamilanesio commented 9 years ago

At the moment the timeout for LDAP operations are hardcoded to 5 sec (bind), 10 sec (connect, request), causing failures in case of peaks of calls and slow LDAP server.

These timeouts needs to be configurable on an LDAP Server basis as you may want to graceful fail to other servers in the list, based on their response time.

Example config (connect=30s, bind=15s, request=20s):

ldap_server myldap {
    url ldap://myldap.org/CN=users,CN=accounts,DC=myorg?uid?sub?(objectClass=person);
    connections 10;
    connect_timeout 30s;
    bind_timeout 15s;
    request_timeout 20s;
    require valid_user;
}
mr-romeijn commented 7 years ago

What's the status on this? Wish to use this with duo 2fa but timeouts are too short

drakkhen commented 7 years ago

I believed this can be closed, since #68 has been merged?