Ahh Thanks, I wondered if there would be a side effect.
I discovered that the directory we're using, OpenDJ, has virtual
attributes, and one of those attributes is "isMemberOf", so I was able to
use:
url: ldap://
On Thu, Jan 4, 2018 at 5:35 AM, Joel Pearson
wrote:
> Hi,
>
> I just wanted to check what the proper way is to limit which users are
> allowed to login to OpenShift via an LDAP group.
>
> There doesn't seem to be a way during authentication, but on the
>
Hi,
I just wanted to check what the proper way is to limit which users are
allowed to login to OpenShift via an LDAP group.
There doesn't seem to be a way during authentication, but on the
authorisation side of things I found that if I removed
"system:authenticated" from the basic-user cluster