Add LDAP policy entities API (#15908)

2025-11-07 12:52:58 -05:00 · 2022-11-07 14:35:09 -08:00
parent ddeca9f12a
commit 76d822bf1e
7 changed files with 288 additions and 6 deletions
--- a/internal/config/identity/ldap/ldap.go
+++ b/internal/config/identity/ldap/ldap.go
@@ -128,6 +128,16 @@ func (l Config) IsLDAPUserDN(user string) bool {
 	return false
 }

+// IsLDAPGroupDN determines if the given string could be a group DN from LDAP.
+func (l Config) IsLDAPGroupDN(user string) bool {
+	for _, baseDN := range l.LDAP.GroupSearchBaseDistNames {
+		if strings.HasSuffix(user, ","+baseDN) {
+			return true
+		}
+	}
+	return false
+}
+
 // GetNonEligibleUserDistNames - find user accounts (DNs) that are no longer
 // present in the LDAP server or do not meet filter criteria anymore
 func (l *Config) GetNonEligibleUserDistNames(userDistNames []string) ([]string, error) {