Postgres Pro
Downloads
Home   >   mailing lists

Re: pgAdmin4 web ldap authtification - Mailing list pgadmin-support

From Stefan Harbich
Subject Re: pgAdmin4 web ldap authtification
Date
Msg-id 32d22b8fa9e196a201498857a0242324d86557fe.camel@harnet.de
Whole thread Raw
In response to Re: pgAdmin4 web ldap authtification  (Stefan Harbich <stefan.harbich@harnet.de>)
List pgadmin-support
Tree view
Hello,

i found the solution. here my config_local.py

...
/pgadmin4 # cat config_local.py
AUTHENTICATION_SOURCES = ['ldap','internal']
LDAP_SERVER_URI = 'ldaps://ldap.intern.example.de'
LDAP_USERNAME_ATTRIBUTE = 'uid'
LDAP_BASE_DN = 'ou=users,dc=example,dc=de'
LDAP_SEARCH_BASE_DN = 'ou=users,dc=example,dc=de'
LDAP_USE_STARTTLS = True
LDAP_CA_CERT_FILE = '/pgadmin4/HarbichCA.pem'
LDAP_CERT_FILE = '/pgadmin4/ldap.intern.example.de.crt'
LDAP_KEY_FILE = '/pgadmin4/ldap.intern.example.de.key'
...

Greetings from Stefan Harbich


Am Dienstag, dem 07.11.2023 um 09:16 +0100 schrieb Stefan Harbich:

Hello,

for your information an entry from the LDAP and the config_local.py LDAP configuration for pgAdmin.

ldapsearch -x -H ldaps://ldap.intern.example.de uid=stefan.example
...
# extended LDIF
#
# LDAPv3
# base <dc=example,dc=de> (default) with scope subtree
# filter: uid=stefan.example
# requesting: ALL
#

# stefan.example, users, example.de
dn: uid=stefan.example,ou=users,dc=example,dc=de
cn: Stefan example
objectClass: evolutionPerson
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
objectClass: mailExtension
objectClass: posixAccount
objectClass: dcMailUser
uidNumber: 10000
uid: stefan.example
title: admin
postalAddress: ################################, NRW$53113$Deutschland
homePostalAddress: ############################################$Deutschland
loginShell: /bin/bash
fileAs: Stefan example
gidNumber: 10000
givenName: Stefan
sn: example
homeDirectory: /home/stefan.example
dcMailMessageStore: /vmail/mailboxes/example.de/stefan.example/mail
mailEnabled: TRUE
initials: STH
displayName: STH
businessRole: #######
birthDate: 1968-01-29
homeFacsimileTelephoneNumber: 0049##########
mailQuota: 700M
homePhone: ###########
mobile: ###########
note:: WnVnw6RuZ2UgdW5kIFBhc3N3w7ZydGVyOkxBTSwgYWRtaW4sIE1hcmxpZXMoNjc4OSk7IFV
TViwgTWFybGllczEyOyBtcGhwbWUwMSwgcm9vdCwgTWFybGllcygxMik7dm1haWxwYW5lbCwgYWRt
aW4sIE1hcmxpZXMoNjc4OSk7IFN1cGVybWljcm8sIEFETUlOLCBNYXJsaWVzKDEyKTsgRWxzdGVyI
FBJTjogMTk2ODAxMjk7IERITCwgc3RlZmFuLmhhcmJpY2hAaGFybmV0LmRlLCBNYXJsaWVzKDEyKT
sgUG9zdGdyZVNRTCwgc3RlZmFuLmhhcmJpY2gsIFN0ZWZhbkhhcmJpY2gxMjsgSGVydHosIDQzMzc
0Nzk1LCBIZXJ0eiMxQ2x1YkdvbGQ7IE9wZW5IQUIgRm9ydW0sIHN0aGFyYmljaCwgRGVja2VyKDEy
KTsgYW5ydWZiZWFudHdvcnRlciwgNTYoNzgpYW5ydWZiZWFudHdvcnRlcjEyKDM0KSwgU2VsZmhvc
3QsIHNoYXJiaWNoLnJ1YmlkaXVtLnNlbGZob3N0LmRlLCBBeCg3MylEZWNrZXIzNihGUSksIFNlbG
Zob3N0LVp1Z2FuZywgNzI3MjIsIERlY2tlcigxMjM0KSwgSU5HIERpQmEsIFBJTiAyOTE2ODsgUFN
ELUJhbmsgT25saW5lIFBJTjogU3RyYWZhbnplaWdlIHZvbSAxMy4wMy4yMDIzIEFrdGVuemVpY2hl
bjogMjMwMzEzLTE1MDYtSVA2MzQ2LSBBbnNwcmVjaHBhcnRuZXI6IEhlcnIgRWdlbmJlcmdlciArN
###################
telephoneNumber: ############

# search result
search: 2
result: 0 Success

# numResponses: 2
# numEntries: 1
...
config_local.py
...
/pgadmin4 # cat config_local.py
AUTHENTICATION_SOURCES = 'ldap'
LDAP_AUTO_CREATE_USER = True
LDAP_SERVER_URI = 'ldap://192.168.20.20:9009'
LDAP_USERNAME_ATTRIBUTE = 'uid'
LDAP_BIND_USER = 'cn=admin,dc=example,dc=de'
LDAP_BIND_PASSWORD = '#############'
LDAP_BASE_DN = 'ou=users,dc=example,dc=de'
LDAP_SEARCH_BASE_DN = 'ou=users,dc=example,dc=de'
LDAP_SEARCH_FILTER = '(objectclass=*)'
LDAP_USE_STARTTLS = False
...

Greetings from Stefan



Am Dienstag, dem 07.11.2023 um 10:05 +0530 schrieb Khushboo Vashi:


On Tue, Nov 7, 2023 at 1:58 AM Stefan Harbich <stefan.harbich@harnet.de> wrote:
Hello,

i created the file config_local.py in the config.py directory. Now I get the following error message.
...
2023-11-06 20:22:52,271: ERROR pgadmin: pgadmin.authenticate.AuthSourceRegistry 'l' has not been implemented.
Traceback (most recent call last):
File "/venv/lib/python3.11/site-packages/flask/app.py", line 1823, in full_dispatch_request
rv = self.dispatch_request()
^^^^^^^^^^^^^^^^^^^^^^^
File "/venv/lib/python3.11/site-packages/flask/app.py", line 1799, in dispatch_request
return self.ensure_sync(self.view_functions[rule.endpoint])(**view_args)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/pgadmin4/pgadmin/authenticate/__init__.py", line 102, in login
return _login()
^^^^^^^^
File "/pgadmin4/pgadmin/authenticate/__init__.py", line 141, in _login
if not auth_obj.validate():
^^^^^^^^^^^^^^^^^^^
File "/pgadmin4/pgadmin/authenticate/__init__.py", line 267, in validate
source = get_auth_sources(src)
^^^^^^^^^^^^^^^^^^^^^
File "/pgadmin4/pgadmin/authenticate/__init__.py", line 328, in get_auth_sources
auth_source = AuthSourceRegistry.get(type)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/pgadmin4/pgadmin/utils/dynamic_registry/__init__.py", line 48, in __get
raise NotImplementedError(
NotImplementedError: pgadmin.authenticate.AuthSourceRegistry 'l' has not been implemented.
...
What else can I do?


Please send your config_local.py settings, so I can have a look. 

Greetings from Stefan

Am Montag, dem 06.11.2023 um 10:30 +0530 schrieb Khushboo Vashi:


On Sat, Nov 4, 2023 at 2:06 AM Stefan Harbich <stefan.harbich@harnet.de> wrote:
Hello, my dears,

i can't get the LDAP login user to pgAdmin on the website. In Docker
Bash, I created the file config_local.py with the following content in
the “/var/lib/pgadmin” directory.
...
AUTHENTICATION_SOURCES = ['ldap','internal']
LDAP_SERVER_URI = 'ldap://<my-ip-address>:10389'
LDAP_USERNAME_ATTRIBUTE = 'uid'
LDAP_BASE_DN = 'uid=admin,ou=system'
LDAP_SEARCH_BASE_DN = 'uid=admin,ou=system'
...

Unfortunately, the content is not used after the container is
restarted. Why not?

config_local.py should be created in the same directory as config.py.

Greetings from Stefan Harbich





pgadmin-support by date:

Previous
From: Sanjay Minni
Date:
Subject: Re: pgadmin for ubuntu 23.10 (mantic)
Next
From: Umit Kilinc
Date:
Subject: Downloading pgadmin