Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Git with ldap authorization

Tags:

git

authentication

ldap

Is there a way to authorize user via ldap on a git repository? Or phrased slightly differently: Is there a way to deny people pull/push if they are not in a specific ldap group?

Edit: Yes, great idea using PAM and/or a hook. Does anyone have experience using git in combination with pam_ldap?

like image 778
Tobias Hertkorn Avatar asked Oct 15 '09 17:10

Tobias Hertkorn

People also ask

Can LDAP be used for authorization?

LDAP authorization can be applied only to LDAP authenticated users. LDAP users must belong to one or more LDAP groups, or have one or more LDAP attributes that map to roles in App Connect Enterprise, with appropriate access to the admin REST API.

What is LDAP in git?

Git controls access to repositories through the fundamental user access to files and directories on the machine. By managing these users via LDAP, you manage who can access which repositories.

What are three ways to LDAP authenticate?

LDAP v3 supports three types of authentication: anonymous, simple and SASL authentication.

1 Answers

Should work:

  • Access git repos over SSH using standard logins (nothing unusual here).

  • Make your git repos have access permissions for a certain group, which particular logins have membership of.

  • Use pam-ldap to make your standard login system work with LDAP.

If there's a more specific way, that JUST checks ldap without affecting the rest of your system? I don't know, but it's probably possible with a pre-commit hook, or something like that.

like image 163
Lee B Avatar answered Oct 08 '22 09:10

Lee B
Sign in to Comment

Related questions

How to manage secrets in a Microservice / Container / Cloud environment?
difference between account ssh-key vs deployment ssh-key
Building merge requests in CI server
nodegit get diff of all staged files
Gitlab webhook does not trigger a build on jenkins
What's the best practice with git for multiple language implementations? [closed]
Why doesn't Git remove some files when I switch a branch?
When should pdf files be tracked in a Git repository and when not
Web access HTML file in my Gitlab repo
How to replicate git-checkout using only plumbing commands?
git fetch --unshallow gives :"fatal: --unshallow on a complete repository does not make sense" error
git: find largest commit(s)
What does "Mark this commit" mean in gitk?
Can Eclipse's Refactor > Move be integrated with Git?
git push origin DENIED by fallthru, hook declined: gitolite
Is there a preferred path where I should initialise my Git repo on Mac OS X?
GIT Split Repository directory preserving *move / renames* history
Why does git diff-index HEAD result change for touched files after git diff or git status?
How do I rename a local-only repository on 'GitHub desktop' - without renaming repository directory
How to resolve Git reporting invalid sha1 pointer 0000000000000000000000000000000000000000?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!