7

Authentication

Marco Dickert edited this page 2019-12-05 12:01:50 +01:00

Table of Contents

• authentication mechanisms
• inline
• file
• ldap

The IFM provides a simple authentication. Note that the permissions are always the same, so you can't have different users with different permissions out-of-the-box.

To activate the authentication you have to set auth to 1 and set a valid value for auth_source.

authentication mechanisms

Currently there are three supported authentication sources:

• inline
• file
• ldap

inline

• syntax: inline;<USERNAME>:<PASSWORDHASH>
• <PASSWORDHASH> has to be a htpasswd compatible hash. You can generate it via the htpasswd utility.

file

• syntax: file;<PATH_TO_FILE>
• The file should be a valid htpasswd file. It can be generated using the htpasswd utility.

ldap

• syntax: ldap;<SERVER>;<ROOTDN>[;<FILTER>]
• <SERVER> has to be the ip or name of the server. You can optional specify the port separated with a colon.
• <ROOTDN> specifies the rootdn. The IFM prepends "uid=" and the entered username.
• <FILTER> is optional and specifies a common ldap filter string, which can for example be used to specify a group or something

full ldap example:

ldap;cn=accounts,dc=company,dc=com;(&(!(nsAccountLock=TRUE))(memberOf=cn=web_editors,cn=groups,cn=accounts,dc=example,dc=com))

• Home
• Configuration
  • Authentication
• Contributing
• CLI, Automatization and Cronjobs
• Syntax highlighting and other Ace features