robrogers3/laraldap-auth

ldap authentication for laravel

laraldap-auth: Authenticate against your Ldap Server

![Software License][ico-license], _(*1)

Drop in replacement for Laravel authentication against your ldap service., _(*2)

Supporting OpenLDAP., _(*3)

Install

Via Composer, _(*4)

``` bash $ composer require robrogers3/laraldap-auth, <sub>(*5)</sub>

## Usage
Add this to app.php in the services providers list

```php
robrogers3\laradauth\LdapAuthServiceProvider::class,

Update config/auth.php, <sub>(*6)</sub>

``` php 'providers' => [ 'users' => [ 'driver' => 'ldap', 'model' => App\User::class, 'host' => 'host.example..com', 'domain' => 'example.com', 'base_dn' => 'cn=users,dc=cs-ds1-1,dc=home,dc=example,dc=com', 'user_dn' => 'uid' ], ],, <sub>(*7)</sub>

Create your database, and specify database connection options in .env and/or config/database.php

Use Artisan to make auth and migrate

Run:
```bash
php artisan make:auth

If you are using Bootstrap 3 then you can publish the views to prevent user registration., <sub>(*8)</sub>

php artisan migrate

php artisan vendor:publish --force #force cause we override those in make auth.

You may be done. Go ahead and login., <sub>(*9)</sub>

Using AES to encrypt passwords

The LDAP passwords are saved in the User table. Normally they are encrypted wih BCrypt., <sub>(*10)</sub>

There is now AES support so you can safely exchange information from other applications that require an ldap login for authentication., <sub>(*11)</sub>

With AES and a shared key, you can encrypt and decrypt passwords on either side if you share the same AES key., <sub>(*12)</sub>

Here's the changes you need to make:, <sub>(*13)</sub>

1. Add the packages HashServiceProvider to config/app.php

        /*
         * Package Service Providers...
         */
        robrogers3\laradauth\LdapAuthServiceProvider::class,
        robrogers3\laradauth\HashServiceProvider::class,

Update the config/hashing.php file like so., <sub>(*14)</sub>

    'driver' => 'aes',

    //more config here

    'aes' => [
        'key' => 'shared-secret-key'
    ]

Update your user database migration and add this column:, <sub>(*15)</sub>

            $table->string('user_name');

Then update your services.php config file, like so:, <sub>(*16)</sub>

    'ldap' => [
        'create-user-name' => true
    ]

Now you should be good to go., <sub>(*17)</sub>

Change log

Please see CHANGELOG for more information on what has changed recently., <sub>(*18)</sub>

Testing

bash $ composer test me not, <sub>(*19)</sub>

Contributing

Please see CONTRIBUTING and CONDUCT for details., <sub>(*20)</sub>

Security

If you discover any security related issues, please email robrogers@me.com instead of using the issue tracker., <sub>(*21)</sub>

Credits

• Rob Rogers
• All Contributors

License

The MIT License (MIT). Please see License File for more information., <sub>(*22)</sub>