Defines a list of roles that will be assigned to every user after successful authentication.
jmix.ldap.default-roles = ui-minimal, ui-filter
Defines a source of the
UserDetails objects returned after successful authentication.
UserDetailsobtained from the primary
UserDetailsServiceof the application, typically from DB.
LdapUserDetailsobjects created by Spring Security are used.
An LDAP server URL. LDAP URLs (SSL-secured) may be used as well, considering that Spring Security can connect to the server. Note that these URLs must not include the base DN. Multiple URLs can be specified in the comma-separated list. In this case, a connection will be established to any of the provided LDAP server URLs.
Defines a base DN. If configured, all LDAP operations on contexts retrieved from this
ContextSource relate to this DN. The default value is an empty distinguished name, that is, all operations relate to the directory root.
Indicates a DN used for authentication. This is normally the distinguished name of the "manager" user.
Defines search base for user searches. Used with jmix.ldap.user-search-filter.
An LDAP filter used to search for users. The substituted parameter is the user’s login name.
An LDAP attribute corresponding to the username. It is used during user synchronization to assign the correct username for the user.
An attribute of the LDAP group corresponding to the authority name.
Defines a search base for group searches.
The default value is an empty string.
If set to
true, a subtree scope search will be performed. If
false, a single-level search is used.
An LDAP filter used to search for user’s groups (optional). The substituted parameter is the user’s login name.
Defines if Active Directory specific security configuration should be used instead of the default one.
Used only with the ActiveDirectory configuration. Specifies the Active Directory domain name.
A DN of the group containing users to be synchronized in the application.
Defines whether to save role assignments during user synchronization or not.
Defines a list of users that should always be authenticated with the standard authentication.
jmix.ldap.standard-authentication-users = admin, operator
Defines whether users are synchronized on every login. For example, if you want to load users from LDAP beforehand and synchronize them once a day on a scheduled task, set the property to