LDAP + Header Rewrite

addis_a · July 11, 2013, 11:45am

We have been looking around for a while on this one without luck so I
figured I would see if anyone here might have an idea. Nginx seems to be
able to do everything if you can just figure out how

We are trying to use nginx as a reverse proxy / trusted intermediary for
authentication. We would like to have nginx authenticate via LDAP for us
and
then add a header to the request representing the authenticated user and
the
groups they belong to eg:

“TrustedIntermediaryUserInformation: greg; admins, all, users”

We have LDAP authentication working and we have nginx working as a pass
through. We are just unsure of how to get the information from the LDAP
module to add the header.

Thanks in advance,

Greg

Posted at Nginx Forum:

GregYoung · July 12, 2013, 12:09am

On Thu, Jul 11, 2013 at 05:45:15AM -0400, GregYoung wrote:

Hi there,

We have LDAP authentication working and we have nginx working as a pass
through. We are just unsure of how to get the information from the LDAP
module to add the header.

Which ldap module is that?

And what does its documentation say?

I’d imagine that the information you want would be available in
variables,
possibly including $remote_user, if it is available at all.

f

Francis D. [email protected]