sora/nixconfig
1
0
Fork 1
Code Issues 2 Pull Requests Actions Releases Activity

fix ldap authentik

Browse Source
This commit is contained in:
soraefir
2026-05-14 20:19:25 +02:00
parent 5d4aaeb49f
commit d9e07543ba
5 changed files with 8 additions and 41 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
modules/server/containers/data/authentik/ldap.yaml
View File

@@ -44,18 +44,19 @@ entries:
attributes:
ak_recovery_immutable: true
- model: authentik_core.group
- model: authentik_core.role
state: present
identifiers:
name: "LDAP Bind Service Account Group"
name: "LDAP Search Role"
attrs:
users:
- !Find [authentik_core.user, [username, ldap-service]]
- model: authentik_policies.policybinding
- model: authentik_core.objectpermission
state: present
identifiers:
target:
permission: !KeyOf authentik_core.permission:codename=search_full_directory,content_type__app_label=authentik_providers_ldap
role: !Find [authentik_core.role, [name, LDAP Search Role]]
attrs:
object_pk:
!Find [authentik_providers_ldap.ldapprovider, [name, ldap-provider]]
permission: "authentik_providers_ldap.search_full_directory"
user: !Find [authentik_core.user, [username, ldap-service]]