providers/ldap: making ldap compatible with synology (#4694)

* internal/outpost/ldap: making ldap compatible with synology * fix duplicate attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add docs about homedirectory Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix duplicate attributes Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add substitution to values Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens@goauthentik.io> Co-authored-by: Jens Langhammer <jens@goauthentik.io>
2023-02-22 15:26:41 +01:00
parent 51c6a14786
commit cd99b6e48f
8 changed files with 156 additions and 43 deletions
--- a/internal/outpost/ldap/search.go
+++ b/internal/outpost/ldap/search.go
@ -37,7 +37,24 @@ func (ls *LDAPServer) Search(bindDN string, searchReq ldap.SearchRequest, conn n
 	}()

 	if searchReq.BaseDN == "" {
-		return ldap.ServerSearchResult{ResultCode: ldap.LDAPResultSuccess}, nil
+        return ldap.ServerSearchResult{
+            Entries: []*ldap.Entry{
+                {
+                    DN: "",
+                    Attributes: []*ldap.EntryAttribute{
+                        {
+                            Name:   "objectClass",
+                            Values: []string{"top", "OpenLDAProotDSE"},
+                        },
+                        {
+                            Name:   "subschemaSubentry",
+                            Values: []string{"cn=subschema"},
+                        },
+                    },
+                },
+            },
+            Referrals: []string{}, Controls: []ldap.Control{}, ResultCode: ldap.LDAPResultSuccess,
+        }, nil
 	}
 	bd, err := goldap.ParseDN(strings.ToLower(searchReq.BaseDN))
 	if err != nil {
@ -51,5 +68,22 @@ func (ls *LDAPServer) Search(bindDN string, searchReq ldap.SearchRequest, conn n
 			return provider.searcher.Search(req)
 		}
 	}
-	return ldap.ServerSearchResult{ResultCode: ldap.LDAPResultOperationsError}, errors.New("no provider could handle request")
+    return ldap.ServerSearchResult{
+		Entries: []*ldap.Entry{
+			{
+				DN: "",
+				Attributes: []*ldap.EntryAttribute{
+					{
+						Name:   "objectClass",
+						Values: []string{"top", "OpenLDAProotDSE"},
+					},
+					{
+						Name:   "subschemaSubentry",
+						Values: []string{"cn=subschema"},
+					},
+				},
+			},
+		},
+		Referrals: []string{}, Controls: []ldap.Control{}, ResultCode: ldap.LDAPResultSuccess,
+	}, nil
 }