LDAPS implementation

[kuhball]

Thanks for developing this awesome product & implementing LDAP.

I have no experience in java but would it be possible to provide the option to use encrypted LDAP Connections via TLS / SSL from the admin webinterface? Normally the certificate is provided by an ENV Variable (LDAPTLS_CACERT) within the Dockercontainer.

[bhotrock]

I agree with kuhball. We need to be able to connect to an LDAP server in another datacenter. At this point, I would need to setup a VPN for security purposes.

[wolicape]

Hi, any news about it ? Does LDAPS works in the last release ? I tried to import our CA in cacerts keystore, configure LDAP to use port 636 (our LDAPS port) but it doesn't work actually. I don't know how to configure it if it's already integrated, I would be grateful for a feedback 🙏

[jendib]

The issue is still opened and nobody worked on it

[nemhods]

Hey, so I could take a jab at this, since essentially all that's required would be a config.setUseSSL(true) here.

The thing that worries me is that I have no clue how to navigate all the other boilerplate code around creating a new setting, surfacing it in the UI, changing all enums, API calls and tests to support it. Is it okay for this project to just give it a try? Or do you prefer this to be done by someone with basic understanding of the codebase @jendib ?

[jendib]

@nemhods Definitely go ahead and create a draft PR, I can assist you if you need to understand anything.

[vmario89]

implemented that feature with the satanic pull request number 666: https://github.com/sismics/docs/pull/666

[vmario89]

btw i used https://nightlies.apache.org/directory/api/1.0.2/apidocs/org/apache/directory/ldap/client/api/LdapConnectionConfig.html as reference

[vmario89]

made a new PR at https://github.com/sismics/docs/pull/670

[jendib]

Thanks!