Closed strannick-ru closed 6 years ago
Actually upon further research it appears that you can set an undocumented property called "auth_ldap_require group" within your configuration file.
See: [This Example](https://github.com/romicaraicu/nginx-ldap/blob/master/nginx-auth-ldap/example.conf#L30)
Also see: [This blog post](http://www.allgoodbits.org/articles/view/29)
I haven't tried it out on my configuration yet but it seems to be a step in the right direction for establishing access control per endpoint.
Hope this helps.
Perhaps you forgot "s" after %(username), it should be "%(username)s".
Please do not create issues just to discuss related topics.
Hello!
I need to check username and group of user. Try to use this: proxy_set_header X-Ldap-Template "(&(SAMAccountName=%(username))(memberof=CN=MyGroup,OU=Groups,DC=example,DC=local))""; but it not works.
How write my query right way?