Symas OpenLDAP Knowledge Base

The Lounge IRC web-client With OpenLDAP

Main documentation here.

Simple Config:

In this config, The Lounge will use the credentials provided in web ui to authenticate with ldap. It’ll allow access if authentication was successful.

      ldap: {
        enable: true,
        url: "ldap://localhost:389",
        tlsOptions: {},
        primaryKey: "uid",
        baseDN: "ou=people,dc=example,dc=com",
    },

Advanced Config:

rootDN is similar to bind DN in other applications. It is used in combination with rootPassword to query ldap. ldap-viewer user in ldap is a member of the group ldap_strict_readonly group. This gives ldap-viewer user permission to query ldap.

With the filter, You can limit The Lounge access to users who are a member of the group thelounge.

      ldap: {
        enable: true,
        url: "ldap://localhost:389",
        tlsOptions: {},
        primaryKey: "uid",
        searchDN: {
            rootDN: "uid=ldap-viewer,ou=people,dc=example,dc=com",
            rootPassword: ""
            filter: "(memberOf=cn=thelounge,ou=groups,dc=example,dc=com)",
            base: "dc=example,dc=com",
            scope: "sub",
        },
    },