From: | Yogesh Mahajan <yogesh(dot)mahajan(at)enterprisedb(dot)com> |
---|---|
To: | mu88 <mu88+dev(at)posteo(dot)eu> |
Cc: | pgAdmin Support <pgadmin-support(at)postgresql(dot)org> |
Subject: | Re: Seed pgAdmin roles with Active Directory groups when using Docker |
Date: | 2023-09-25 12:11:02 |
Message-ID: | CAMa=N=OiGcS6MLF6Pp8PhG-YeVFiYwm27ET-ucyrKj5L7Gu2PQ@mail.gmail.com |
Views: | Raw Message | Whole Thread | Download mbox | Resend email |
Thread: | |
Lists: | pgadmin-support pgsql-admin |
Hi,
PFA response below -
Thanks,
Yogesh Mahajan
EnterpriseDB
On Mon, Sep 25, 2023 at 4:10 PM mu88 <mu88+dev(at)posteo(dot)eu> wrote:
> Hi and thank you very much for your quick reply, Yogesh.
>
> Just one follow-up question: you wrote that LDAP users will be assigned to
> the User role by default. If I understand the docs correctly, I can enable
> LDAP by just setting environment variables, so maybe I could solve my use
> case with the current implementation. Only one last piece is missing: can I
> somehow restrict the access to pgAdmin to a certain LDAP group via an
> environment variable?
>
I guess you should be able to specify that in 'LDAP_SEARCH_FILTER':filter
for user search. You can refer this
<https://gist.github.com/jonlabelle/0f8ec20c2474084325a89bc5362008a7#users-in-group>
link for more information.
In this pgAdmin will not have any role in filtering/limiting users to
access.
>
> Thank you!
>
> 25.09.2023 12:11:07 Yogesh Mahajan <yogesh(dot)mahajan(at)enterprisedb(dot)com>:
>
> Hi,
>
> pgAdmin does not have this option as of now. By default , users logged in
> with LDAP will have a 'User' role.
> You can track development on this feature in the issue - #2483
> <https://github.com/pgadmin-org/pgadmin4/issues/2483>
>
> Thanks,
> Yogesh Mahajan
> EnterpriseDB
>
>
> On Mon, Sep 25, 2023 at 3:12 PM mu88 <mu88+dev(at)posteo(dot)eu> wrote:
>
>> Hi,
>>
>> I want to setup a pgAdmin instance for our team using the Docker
>> deployment. As our organization uses Active Directory, I'd like to assign
>> the pgAdmin User role to a specific AD group when starting the pgAdmin
>> Docker container.
>>
>> Within the docs I already found the option to use pgAdmin with LDAP, so
>> hopefully accessing our AD should work.
>>
>> What I didn't find: is it possible to assign a pgAdmin role to an AD
>> group or only to AD users? And if yes, can this automatically happen on
>> Docker container start (e. g. by using an environment variable or a config
>> file similar to servers.json)?
>>
>> Or put in other words: is it possible that it looks like this after
>> container start only by configuration without any manual interaction?
>>
>> Best regards!
>>
>> PS: you find this question here as well:
>> https://dba.stackexchange.com/questions/331385/seed-pgadmin-roles-with-active-directory-groups-when-using-docker
>>
>
From | Date | Subject | |
---|---|---|---|
Next Message | Marcus Vinicius Castro | 2023-09-25 14:18:17 | Re: Seed pgAdmin roles with Active Directory groups when using Docker |
Previous Message | Umega Kaul | 2023-09-25 11:05:49 | PG Admin v 7.7 error |
From | Date | Subject | |
---|---|---|---|
Next Message | Marcus Vinicius Castro | 2023-09-25 14:18:17 | Re: Seed pgAdmin roles with Active Directory groups when using Docker |
Previous Message | Yogesh Mahajan | 2023-09-25 10:10:28 | Re: Seed pgAdmin roles with Active Directory groups when using Docker |