liqingwang opened a new issue, #10425: URL: https://github.com/apache/dolphinscheduler/issues/10425
### Search before asking - [X] I had searched in the [issues](https://github.com/apache/dolphinscheduler/issues?q=is%3Aissue) and found no similar feature requirement. ### Description Recently, We have tried to enable LDAP on DS and found some questions. - 1. version 2.0.5 User disabled and can't log in, and `dev` has the same bug, see #10386 - 2. Due to the above question, we need to add a unit test to cover the LDAP user login case. - 3. When you log in with LDAP and are not a ds user, it will create a new user automatedly. But in my option, LDAP login is the same as user-password log-in, if you are not a ds user, your login will be rejected. I think we can add a new config field, user can choose if they log in with LDAP and are not a ds user, which will create a new user or be rejected. - 4. ds config `security.authentication.type` only can be `password` or `LDAP` log in. And do we need the mixed login same as Jenkins or Rancher? - 5. When you log in with LDAP. And there are still change password pages. But LDAP users have no password config. I think hiding this page when you log in with LDAP is better. - 6. dev branch has no LDAP config in the YAML file. Due to https://github.com/apache/dolphinscheduler/commit/4114cb07f64950f88ffb4aa8a4ecc4815f32d76b#diff-f2f54230647b5ed6920efc032cd61c4dc2acd8f728ad0f43aef1e8fd3f9793ed , I'll fix this and make LDAP to a switch,not a comments config. - 7. And some contributor says LDAP needs some improvements, I'll fix this. See #10274 - 8. The last one, LDAP miss document, And I'll fix this too. See #10250 ### Use case _No response_ ### Related issues _No response_ ### Are you willing to submit a PR? - [X] Yes I am willing to submit a PR! ### Code of Conduct - [X] I agree to follow this project's [Code of Conduct](https://www.apache.org/foundation/policies/conduct) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
