2018-03-05 20:49:36 +00:00
|
|
|
/* global WIKI */
|
2017-07-29 21:33:08 +00:00
|
|
|
|
|
|
|
// ------------------------------------
|
|
|
|
// LDAP Account
|
|
|
|
// ------------------------------------
|
|
|
|
|
|
|
|
const LdapStrategy = require('passport-ldapauth').Strategy
|
2017-07-30 04:04:57 +00:00
|
|
|
const fs = require('fs')
|
2017-07-29 21:33:08 +00:00
|
|
|
|
2017-09-11 03:00:03 +00:00
|
|
|
module.exports = {
|
|
|
|
init (passport, conf) {
|
|
|
|
passport.use('ldapauth',
|
|
|
|
new LdapStrategy({
|
|
|
|
server: {
|
|
|
|
url: conf.url,
|
|
|
|
bindDn: conf.bindDn,
|
|
|
|
bindCredentials: conf.bindCredentials,
|
|
|
|
searchBase: conf.searchBase,
|
|
|
|
searchFilter: conf.searchFilter,
|
|
|
|
searchAttributes: ['displayName', 'name', 'cn', 'mail'],
|
|
|
|
tlsOptions: (conf.tlsEnabled) ? {
|
|
|
|
ca: [
|
|
|
|
fs.readFileSync(conf.tlsCertPath)
|
|
|
|
]
|
|
|
|
} : {}
|
|
|
|
},
|
|
|
|
usernameField: 'email',
|
|
|
|
passReqToCallback: false
|
|
|
|
}, (profile, cb) => {
|
|
|
|
profile.provider = 'ldap'
|
|
|
|
profile.id = profile.dn
|
2018-05-19 20:40:07 +00:00
|
|
|
WIKI.db.users.processProfile(profile).then((user) => {
|
2017-09-11 03:00:03 +00:00
|
|
|
return cb(null, user) || true
|
|
|
|
}).catch((err) => {
|
|
|
|
return cb(err, null) || true
|
|
|
|
})
|
|
|
|
}
|
|
|
|
))
|
|
|
|
}
|
2017-07-29 21:33:08 +00:00
|
|
|
}
|