堆栈内存溢出
  简体   繁体   English

获取经过身份验证的 ldap 用户的 CN 条目

[英]Getting CN entry of an authenticated ldap user

 原文  2021-06-15 20:33:51       authentication/ spring-security/ spring-ldap

问题描述

I'm doing my first steps on LDAP with spring boot.我正在使用 spring 引导在 LDAP 上迈出第一步。 I have managed to authenticate my user which is listed in my ldif file:我已经设法验证了我的 ldif 文件中列出的用户:

dn: dc=parascus,dc=de
objectclass: top
objectclass: domain
objectclass: extensibleObject
dc: parascus

dn: ou=groups,dc=parascus,dc=de
objectclass: top
objectclass: organizationalUnit
ou: groups

dn: ou=people,dc=parascus,dc=de
objectclass: top
objectclass: organizationalUnit
ou: people

dn: uid=jsmith,ou=people,dc=parascus,dc=de
objectclass: top
objectclass: person
objectclass: inetOrgPerson
cn: Smith, John
sn: Smith
uid: jsmith
userPassword: scrambled

dn: cn=developers,ou=groups,dc=parascus,dc=de
objectclass: top
objectclass: groupOfUniqueNames
cn: developers
ou: developer
uniqueMember: uid=jsmith,ou=people,dc=parascus,dc=de

Now I'm in my controller method and try to get the cn property "Smith, John":现在我在我的 controller 方法中并尝试获取 cn 属性“Smith, John”:

@GetMapping("/profile")
public String index(Authentication authentication) {
    return "Profile of " + authentication.getName();
}

But I only get the uid "jsmith".但我只得到 uid“jsmith”。 Can somebody give me a hint how I can get all the information or at last the cn entry?有人可以提示我如何获取所有信息或最后的 cn 条目吗?

Kind Regards亲切的问候

Parascus帕拉斯库斯

1 个解决方案

解决方案1
 1 已采纳  2021-06-15 22:58:29

You will need to supply a UserDetailsContextMapper to tell Spring Security how to extract details from the DirContext .您需要提供一个UserDetailsContextMapper来告诉 Spring Security 如何从DirContext中提取详细信息。

You do this when exposing the LdapAuthenticationProvider :您在公开LdapAuthenticationProvider时执行此操作:

@Bean
LdapAuthenticationProvider ldap(LdapAuthenticator authenticator) {
    LdapAuthenticationProvider ldap = new LdapAuthenticationProvider(authenticator);
    ldap.setUserDetailsContextMapper(new PersonContextMapper());
    return ldap;
}

Spring Security ships with a couple of built-in context mappers, one for the person schema ( PersonContextMapper ) and another for the inetOrgPerson schema ( InetOrgPersonContextMapper ). Spring Security 附带了几个内置的上下文映射器,一个用于person模式 ( PersonContextMapper ),另一个用于inetOrgPerson模式 ( InetOrgPersonContextMapper )。

With the above configuration, you can do either:使用上述配置,您可以执行以下任一操作:

public String index(Authentication authentication) {
    Person person = (Person) authentication.getPrincipal();
    String[] cn = person.getCn();
    return "Profile of " + cn[cn.length - 1];
}

or或者

public String index(@AuthenticationPrincipal Person person) {
    String[] cn = person.getCn();
    return "Profile of " + cn[cn.length - 1];
}

If your entries use neither the person nor the inetOrgPerson schema, you can create your own UserDetailsContextMapper .如果您的条目既不使用person也不使用inetOrgPerson模式,您可以创建自己的UserDetailsContextMapper

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Perl LDAP搜索作为CN属性的用户 - Perl LDAP search for user being a CN attribute 如何使用userName而不是CN在LDAP的Jboss中对用户进行身份验证 - How authenticate user in Jboss with LDAP using userName, not CN 在BPEL中获取经过身份验证的用户 - Getting Authenticated User in BPEL 用户未在 Sonar 5.6 中针对 LDAP 进行身份验证 - User not authenticated against LDAP in Sonar 5.6 获取LDAP认证用户的组名 - Get group name of LDAP authenticated user 如何知道使用LDAP绑定成功进行身份验证的用户的objectGUID - How to know the objectGUID of a user that successfully authenticated with LDAP bind 在Spring的配置类中获取经过身份验证的用户 - getting authenticated user inside the configuration class in Spring 获取经过身份验证的用户详细信息Laravel 5.2 - Getting the authenticated user details Laravel 5.2 如何检索使用Apache的mod_ldap进行身份验证的用户的用户信息? - How do I retrieve the user information of a user authenticated with Apache's mod_ldap? django用户已认证(未认证) - django user authenticated (not authenticated )
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM