Skip to content

wongnai/workspace-ldap

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.github/workflows
.github/workflows
 
 
docs
docs
 
 
gworkspace
gworkspace
 
 
prom
prom
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 

Repository files navigation

LDAP Bridge for Google Workspace

This service implement an LDAP server using user and group information from Google Workspace Admin API.

The server is intended to be used as a group mapping info provider for Palo Alto Networks firewalls.

Setup

  1. Set GOOGLE_APPLICATION_CREDENTIALS=/path/to/serviceaccount.json (see next section)
  2. Run Docker with --impersonate [email protected] --base-dn example.com

Service account

If using service account for authentication, make sure it is configured for Domain-wide delegation.

Scopes needed

Directory layout

See docs

Caveats

  • This dump the entire Google directory (users/groups) into memory, so it would take long time to start
  • memberOf on user is not implemented
  • Binds is not implemented. Any bind on the base DN would return success
  • SASL is not implemented in the upstream library. Don't send SASL request to this server!
  • This is NOT a drop in replacement for Secure LDAP service

License

Apache License 2.0

About

LDAP server with data from Google Workspace

Resources

Readme

License

View license
Activity
Custom properties

Stars

1 star

Watchers

5 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages