堆栈内存溢出
  简体   繁体   English

使用Flask_simpleldap在Flask中进行LDAP身份验证会返回“凭据无效”

[英]LDAP Authentication in Flask using flask_simpleldap returns “Credentials invalid”

 原文  2018-06-12 08:25:38       python/ python-3.x/ authentication/ flask/ ldap

问题描述

I am trying to use LDAP Authentication in Python Flask. 我正在尝试在Python Flask中使用LDAP身份验证。

Here's my test page, taken from SimpleLDAP official documentation: 这是我的测试页,摘自SimpleLDAP官方文档: 

from flask import Flask, g, request, session, redirect, url_for
from flask_simpleldap import LDAP

app = Flask(__name__)
app.secret_key = 'dev key'
app.debug = True

#app.config['LDAP_USE_SSL'] = True
app.config['LDAP_HOST'] = 'my-dc-server'
app.config['LDAP_BASE_DN'] = 'OU=-my-ou,dc=my,dc=domain,dc=com'
app.config['LDAP_USERNAME'] = 'CN=my-domain-admin-working-user,OU=my-ou,DC=my,DC=domain,DC=com'
app.config['LDAP_PASSWORD'] = 'my-domain-admin-working-password'

ldap = LDAP(app)

@app.route('/')
@ldap.basic_auth_required
def index():
    return 'Welcome, {0}!'.format(g.ldap_username)

if __name__ == '__main__':
    app.debug = True
    app.run(host='0.0.0.0', port=8000)

If I input a working domain user into the popup I always get: 如果我在弹出窗口中输入工作中的域用户,则始终会得到: 

Traceback (most recent call last):
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 2309, in __call__
    return self.wsgi_app(environ, start_response)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 2295, in wsgi_app
    response = self.handle_exception(e)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 1741, in handle_exception
    reraise(exc_type, exc_value, tb)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/_compat.py", line 35, in reraise
    raise value
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 2292, in wsgi_app
    response = self.full_dispatch_request()
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 1815, in full_dispatch_request
    rv = self.handle_user_exception(e)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 1718, in handle_user_exception
    reraise(exc_type, exc_value, tb)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/_compat.py", line 35, in reraise
    raise value
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 1813, in full_dispatch_request
    rv = self.dispatch_request()
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask/app.py", line 1799, in dispatch_request
    return self.view_functions[rule.endpoint](**req.view_args)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask_simpleldap/__init__.py", line 386, in wrapped
    if not self.bind_user(req_username, req_password):
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask_simpleldap/__init__.py", line 152, in bind_user
    user_dn = self.get_object_details(user=username, dn_only=True)
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask_simpleldap/__init__.py", line 185, in get_object_details
    conn = self.bind
  File "/home/ubuntu/ipcatalogue_env/lib/python3.5/site-packages/flask_simpleldap/__init__.py", line 129, in bind
    raise LDAPException(self.error(e.args))
flask_simpleldap.LDAPException: Invalid credentials

Domain user/password have been tested using RDP to my-dc-server and work fine. 已使用RDP对my-dc-server进行了域用户/密码的测试,并且工作正常。

I've tried using LDAP_USE_SSL = True or with commenting it (as in example), same result. 我尝试使用LDAP_USE_SSL = True或对其进行注释(如示例),结果相同。

What am I missing? 我想念什么?

UPDATE: 更新: 

from flask import Flask, g, request, session, redirect, url_for
from flask_simpleldap import LDAP

app = Flask(__name__)
app.secret_key = 'dev key'
app.debug = True

app.config['LDAP_HOST'] = 'my-dc-server'
app.config['LDAP_BASE_DN'] = 'OU=-my-ou,dc=my,dc=domain,dc=com'
app.config['LDAP_USERNAME'] = 'my-domain\\my-domain-admin-working-user'
app.config['LDAP_PASSWORD'] = 'my-domain-admin-working-password'

ldap = LDAP(app)

@app.route('/')
@ldap.basic_auth_required
def index():
    return 'Welcome, {0}!'.format(g.ldap_username)

if __name__ == '__main__':
    app.debug = True
    app.run(host='0.0.0.0', port=8000)

With the new code I now obtain: 使用新代码,我现在获得: 

/lib/python3.5/site-packages/flask_simpleldap/__init__.py", line 201, in get_object_details
raise LDAPException(self.error(e.args))
flask_simpleldap.LDAPException: No such object

1 个解决方案

解决方案1
 1 已采纳  2018-06-22 13:32:14

Try specifying the username as specified here: User Name Formats 尝试指定此处指定的用户名: 用户名格式

Both formats were working fine for me with your provided code. 两种格式对您提供的代码对我来说都可以正常工作。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 python-flask_simpleldap将不会绑定 - python - flask_simpleldap won't bind 使用flask-simpleldap在Flask app中进行身份验证 - Authentication in Flask app using flask-simpleldap Flask 认证使用 LDAP - Flask authentication using LDAP 使用flask_ldap3_login与LDAP进行Flask身份验证 - Flask Authentication with LDAP using flask_ldap3_login Python Flask “凭证无效” - Python Flask “Invalid Credentials” 使用flask-kerberos凭据进行python ldap搜索 - python ldap search with flask-kerberos credentials Flask REST 客户端应用程序在身份验证成功后返回 Invalid Credential - Flask REST client application returns Invalid Credential after successful authentication “描述”:POSTMAN 中使用 flask_jwt 的“无效凭据” - “description”: “Invalid credentials” in POSTMAN using flask_jwt 使用LDAP登录Flask中的用户信息 - Getting Logged in User Info in Flask using LDAP Python Flask 如何获取 LDAP 身份验证的 DN 等项目的值 - Python Flask how to get values for items such as DN for LDAP authentication
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM