harbor icon indicating copy to clipboard operation
harbor copied to clipboard

Published 20 hours ago verified publisher icon goharbor

Support nested LDAP groups

Open mungo312 opened this issue 5 years ago • 14 comments

In our company we are using nested groups in our Active Directory. This means: User <-> OrgGroup <-> ResourceGroup The resource group is configured in Harbor

At the moment the Group membership is not detected in harbor, in my tests the user did not get admin privileges.

Steps to reproduce the problem: Use a LDAP with nested Groups.

Versions: Please specify the versions of following systems.

  • harbor version: 1.8.0

mungo312 avatar Jun 21 '19 14:06 mungo312

Any idea when this will be actually done ?

Typositoire avatar Jul 19 '19 16:07 Typositoire

Actually I've got a really crud implementation if you guys are interested ?

Typositoire avatar Jul 23 '19 16:07 Typositoire

I believe this change was rolled back - maybe this should be reopened and moved back into the Backlog?

ConorNevin avatar Jan 28 '20 18:01 ConorNevin

Few of the customers using harbor tile in TKGI environment requested for nested ldap group support. Spoke with engineering and reopened this issue.. Current harbor version: 2.1.1

narendrakum avatar Jan 05 '21 10:01 narendrakum

Following this issue. Our organization really needs this feature.

gwiersma avatar Mar 17 '22 09:03 gwiersma

Agreed, this is essential for us as well.

vikingtoby avatar Mar 31 '22 11:03 vikingtoby

same this is important for us

hashCode1 avatar Apr 14 '22 15:04 hashCode1

I will be more than happy for this feature as well :)

lavih avatar May 08 '22 11:05 lavih

Hi, we also would like to be able to use nested groups in Harbor so will follow this issue as well.

jpistoor avatar Jul 04 '22 10:07 jpistoor

This RFE is open for a long time now, any thoughts when this will be implemented?

RobMokkink avatar Jul 04 '22 10:07 RobMokkink

Chiming in to request this to. This issue is also very similar to https://github.com/goharbor/harbor/issues/9492

xcorp avatar Sep 22 '22 10:09 xcorp

I see the issue is in the "v1.9 completed" row of the Harbor Project Board.

On the other hand, I see this issue is assigned to the backlog if candidate/2.7.0

This issue is open however.

The related issue is in the "prioritised backlog"

Is there anything we can do to improve the issue so it can be picked up?

robertdebock avatar Dec 21 '22 13:12 robertdebock

Hello, we also would love to see this feature in our company :)

kkrombach avatar Jan 12 '24 11:01 kkrombach

Hi, are there any plans when this will be integrated? Without this, we need to maintain the permissions/group assignments multiple times.

larsl-net avatar Jun 17 '24 10:06 larsl-net