Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


    Cloudron Forum

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    Solved Cloudron LDAP access for external apps?

    Discuss
    6
    11
    343
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User last edited by

      Is it possible to make the LDAP service in Cloudron accessible to external applications? I know external access is disabled by default, but it would be great if it were open for any external apps I have. Thanks

      1 Reply Last reply Reply Quote 1
      • jdaviescoates
        jdaviescoates last edited by jdaviescoates

        No, not yet but hopefully soon πŸ™‚

        I use Cloudron with Gandi & Hetzner

        1 Reply Last reply Reply Quote 0
        • ?
          A Former User last edited by

          Damn, I forgot to verify this before I installed to experiment.

          jdaviescoates 1 Reply Last reply Reply Quote 0
          • jdaviescoates
            jdaviescoates @Guest last edited by

            @YurkshireLad personally I don't need it yet, but it'd be nice to have.

            I've only been playing around with/ using Cloudron since January but I totally love it so far, and I've been really impressed with how responsive the developers are; they respond promptly, fix bugs quickly and add new features at an amazing rate.

            I use Cloudron with Gandi & Hetzner

            1 Reply Last reply Reply Quote 2
            • nebulon
              nebulon Staff last edited by

              Technically this seems to be possible quite easily by providing a TLS certificate to the ldap server instance and expose it on a public port. It however raises a few issues like rate-limiting and how to configure which users and groups are exposed there. Also ldap binds for user searches have to be maintained somehow (I think similar to app passwords)
              So far there was no focus on that feature, as we don't know how useful it really is for which use-cases and which organizations really require this. Afterall just adding also adds an ongoing burden on testing and maintaining such a feature.

              imc67 1 Reply Last reply Reply Quote 1
              • imc67
                imc67 translator @nebulon last edited by

                @nebulon the LDAP/SSO discussions are alas a β€˜little bit’ scattered around the forum, this is from another thread:

                @imc67 said in LDAP/AD Server:

                It would be extremely convenient to have Cloudron as a LDAP server (app) and contains "the one and only truth" about usermanagement (all users/groups etc) so external systems (like local NAS) can make use of it.

                Is that feasible, easy to do, safe ...?

                1 Reply Last reply Reply Quote 1
                • nebulon
                  nebulon Staff last edited by

                  Agree, let me lock this thread in favor of the other one.

                  1 Reply Last reply Reply Quote 1
                  • A
                    augusto last edited by

                    Just here to vote for a implementation for this feature.

                    In our organization, we have different internal apps that are scattered here and there because of historical reasons. We use cloudron now for some apps and would like to manage users from a single source, but at the moment the only way we could do that is configuring an ldap server which is something that's out of our knowledge base.

                    Would be great to have something like a simple app we could install on or cloudron and we can cosult via rest API where we can get the active users and groups/roles, something super simple but that's synced with the cloudron user directory. Is this feasible?

                    fbartels 1 Reply Last reply Reply Quote 2
                    • fbartels
                      fbartels App Dev @augusto last edited by

                      @augusto I've got good news for you: https://forum.cloudron.io/post/41167

                      jdaviescoates 1 Reply Last reply Reply Quote 3
                      • jdaviescoates
                        jdaviescoates @fbartels last edited by

                        @nebulon said in Cloudron LDAP access for external apps?:

                        Agree, let me lock this thread in favor of the other one.

                        Doesn't look like you did ever lock it πŸ™‚

                        But perhaps now turn this into a question and mark it as solved πŸ™‚

                        I use Cloudron with Gandi & Hetzner

                        nebulon 1 Reply Last reply Reply Quote 0
                        • Topic has been marked as a question  nebulon nebulon 
                        • Topic has been marked as solved  nebulon nebulon 
                        • nebulon
                          nebulon Staff @jdaviescoates last edited by

                          @jdaviescoates thanks for the hint πŸ™‚

                          1 Reply Last reply Reply Quote 1
                          • First post
                            Last post
                          Powered by NodeBB