Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Navigation

    Cloudron Forum

    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    Cloudron LDAP access for external apps?

    Discuss
    4
    7
    70
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      A Former User last edited by

      Is it possible to make the LDAP service in Cloudron accessible to external applications? I know external access is disabled by default, but it would be great if it were open for any external apps I have. Thanks

      1 Reply Last reply Reply Quote 1
      • jdaviescoates
        jdaviescoates last edited by jdaviescoates

        No, not yet but hopefully soon 🙂

        1 Reply Last reply Reply Quote 0
        • ?
          A Former User last edited by

          Damn, I forgot to verify this before I installed to experiment.

          jdaviescoates 1 Reply Last reply Reply Quote 0
          • jdaviescoates
            jdaviescoates @Guest last edited by

            @YurkshireLad personally I don't need it yet, but it'd be nice to have.

            I've only been playing around with/ using Cloudron since January but I totally love it so far, and I've been really impressed with how responsive the developers are; they respond promptly, fix bugs quickly and add new features at an amazing rate.

            1 Reply Last reply Reply Quote 1
            • nebulon
              nebulon Staff last edited by

              Technically this seems to be possible quite easily by providing a TLS certificate to the ldap server instance and expose it on a public port. It however raises a few issues like rate-limiting and how to configure which users and groups are exposed there. Also ldap binds for user searches have to be maintained somehow (I think similar to app passwords)
              So far there was no focus on that feature, as we don't know how useful it really is for which use-cases and which organizations really require this. Afterall just adding also adds an ongoing burden on testing and maintaining such a feature.

              imc67 1 Reply Last reply Reply Quote 1
              • imc67
                imc67 @nebulon last edited by

                @nebulon the LDAP/SSO discussions are alas a ‘little bit’ scattered around the forum, this is from another thread:

                @imc67 said in LDAP/AD Server:

                It would be extremely convenient to have Cloudron as a LDAP server (app) and contains "the one and only truth" about usermanagement (all users/groups etc) so external systems (like local NAS) can make use of it.

                Is that feasible, easy to do, safe ...?

                1 Reply Last reply Reply Quote 1
                • nebulon
                  nebulon Staff last edited by

                  Agree, let me lock this thread in favor of the other one.

                  1 Reply Last reply Reply Quote 1
                  • First post
                    Last post