[Improvement][dolphinscheduler-api] Make ADMIN user a "memberOf" when using LDAP server #16106
Open
3 tasks done
Labels
improvement
make more easy to user or prompt friendly
Search before asking
Description
The currently implementation will only llow one user to be ADMIN for a scheduler instance using the attribute
security.authentication.ldap.user.admin=read-only-admin
Further more the revoke/invoking must be done changing the dolphin config. In large organisation this will done through roles/groups.
Therefore, I would like to be assign admin access using LDAP groups ("memberOf" attribute)
So can we extend the code (keeping the old way too), but also add chacke like "mail" attributes
#16105
Are you willing to submit a PR?
Code of Conduct
The text was updated successfully, but these errors were encountered: