Using OpenLDAP with Kanboard
Learn how to replace Kanboard's internal user management database with the superior performance, privacy, and security of OpenLDAP
Add these to the Kanboard config.php
Make sure you adapt the constant LDAP_SERVER
to the correct LDAP endpoint.
You also might have to change dc=example,dc=com
to whatever your OpenLDAP is handling, and maybe change the kanboard_users
group name used in LDAP_USER_FILTER
to identify users of a valid group of yours.
define('LDAP_AUTH', true);
define('LDAP_SERVER', 'ldap://ldap-server.com:389');
define('LDAP_SSL_VERIFY', true);
define('LDAP_START_TLS', false);
define('LDAP_USERNAME_CASE_SENSITIVE', false);
define('LDAP_USER_CREATION', true);
define('LDAP_BIND_TYPE', 'user');
define('LDAP_USERNAME', 'uid=%s,ou=people,dc=example,dc=com');
define('LDAP_PASSWORD', null);
define('LDAP_USER_BASE_DN', 'ou=people,dc=example,dc=com');
define('LDAP_USER_FILTER', '(&(uid=%s)(memberof=cn=kanboard_users,ou=groups,dc=example,dc=com))');
define('LDAP_USERNAME_CASE_SENSITIVE', false);
define('LDAP_USER_ATTRIBUTE_USERNAME', 'uid');
define('LDAP_USER_ATTRIBUTE_FULLNAME', 'cn');
define('LDAP_USER_ATTRIBUTE_EMAIL', 'mail');
define('LDAP_USER_ATTRIBUTE_GROUPS', 'memberof');
define('LDAP_USER_ATTRIBUTE_PHOTO', 'jpegPhoto');
define('LDAP_USER_ATTRIBUTE_LANGUAGE', '');