This extension brings LDAP authentication to ckan replacing the built in ckan authentication.
python-ldap must be installed and available in the CKAN pyenv.
ldap needs adding to the list of ckan.plugins
These config options must be provided:
ckanext_ldap.server_url the ldap server url eg ldap://ldap_server
ckanext_ldap.base_dn eg ou=group,dc=example,dc=com
ckanext_ldap.search_attr eg MyService
ckanext_ldap.user_attr eg cn=CkanUsers,ou=group,dc=example,dc=com
ckanext_ldap.admin_attr eg cn=CkanAdmins,ou=group,dc=example,dc=com
ckanext_ldap.allow_anon_access True/False can unlogged in users browse CKAN
Optional
ckanext_ldap.no_auth_message custom message shown when user has a valid
account but not permission to access CKAN.
ckanext_ldap.force_lower_username cause ldap usernames to be converted to lower
case.
ckanext_ldap.debug increase the logging of access attempts.