Package org.gridgain.internal.security.ldap.configuration

Class LdapGroupSearchConfigurationSchema

java.lang.Object
org.gridgain.internal.security.ldap.configuration.LdapGroupSearchConfigurationSchema
@Config public class LdapGroupSearchConfigurationSchema extends Object
Ldap group search configuration subtree.

  • Field Details

    • dn

      @Value public String dn
      The container distinguished name to search for groups in which the user has membership.

    • scope

      @Value(hasDefault=true) public String scope
      Specifies whether the group search should be SUB_TREE, ONE_LEVEL or BASE. ONE_LEVEL only searches objects directly contained within the dn. SUB_TREE searches all objects contained under dn. BASE specifies that the dn is a group object, and that it is the only group considered. Defaults to SUB_TREE

    • filter

      @Value(hasDefault=true) public String filter
      Specifies a filter to use to look up a group. When not set, the realm searches for group, groupOfNames, groupOfUniqueNames, or posixGroup with the attributes member, memberOf, or memberUid. Any instance of {0} in the filter is replaced by the user attribute defined in group_search.userAttribute.

    • userAttribute

      @Value(hasDefault=true) public String userAttribute
      Specifies the user attribute that is fetched and provided as a parameter to the filter. If not set, the user DN is passed into the filter. Defaults to Empty.

  • Constructor Details

    • LdapGroupSearchConfigurationSchema

      public LdapGroupSearchConfigurationSchema()