Reputation: 3189
Ruby - AD/LDAP auth - read user details
I am trying LDAP/Active directory authentication. This code is working perfectly, I can authenticate. My question is - How do I retrieve user information from AD? I want to read firstname, lastname, fullname, email etc from AD for the authenticated user.
Upvotes: 0
Views: 460
Answers (1)
Reputation: 11134
In LDAP, users do not authenticate, connections are authenticated. Once the authorization state of the connection has been established (by a successful bind request), code that desires to retrieve information from the directory must transmit a search request to the directory server and then interpret the response.
Search requests must contain a minimum the following parameters:
- the base object at which the search starts (no objects above the base objects are returned)
- the scope of the search:
baseis the base object itself,oneis the base object and one level below thw base object,subis the base object and all entries below the base object. - a filter which limits the entries returned to those entries which match the assertion in the filter
A list of attributes can also be supplied, though many, but not all, LDAP APIs will request all user attributes if none are supplied in the search request.
see also
Upvotes: 1
Related Questions
- Rails authentication with LDAP
- Rails Authentication with Active Directory
- Active Directory authentication in Rails
- How To Use LDAP Authentication Information In Rails devise_ldap_authenticatable?
- Ruby on Rails: LDAP user operations
- Authentication using ldap in rails?
- LDAP through Ruby or Rails
- How to check for user credentials using active directory and a ruby script
- Rails LDAP login using net/ldap
- LDAP and Ruby on Rails