LDAPSearchValve
Valve for searching an LDAP Directory.
If no items exist in the Current Item Set (CIS), the valve will perform the configured search and populate the CIS with the search result entries. If items exist in CIS the Valve operates on them and will process all items surviving the common item filtering rules.
Properties
Example Configuration 1 – User with mail={{request.email}}
{
"name": "LDAPSearchValve",
"config": {
"connection_ref":"b0f2ddff-9585-47c5-9286-2bee2b731197",
"base_dn":"dc=example,dc=com",
"scope":"SUB",
"size_limit":"0",
"filter":"(&(objectclass=*)(mail={{request.email}}))",
"attributes":"cn,uid,mail,mobile"
}
}
Example Configuration 2 – Nested group membership
{
"name": "LDAPSearchValve",
"config": {
"connection_ref":"b0f2ddff-9585-47c5-9286-2bee2b731197",
"base_dn":"dc=example,dc=com",
"scope":"SUB",
"size_limit":"0",
"filter":"(&(objectclass=*)(memberof:1.2.840.113556.1.4.1941:=cn=GroupWithNestedGroups,OU=groups,OU=Company,DC=Org,DC=local))",
"attributes":"cn,uid,mail,mobile"
}
}
Example configuration 3 - Multiple search bases
<p>{
"name": "LDAPSearchValve",
"config": {
"connection_ref":"b0f2ddff-9585-47c5-9286-2bee2b731197",
"base_dn":["dc=example,dc=com", "dc=example,dc=org"],
"scope":"SUB",
"size_limit":"0",
"filter":"(&(objectclass=*)(mail={{request.email}}))",
"attributes":"cn,uid,mail,mobile"
}
}</p>
Click to copy