Configure user disable mechanism in reva.

This PR adds configuration parameters to the auth-basic and users services that passes them through to reva. These configuration parameters are all related to the new user disable mechanism that @Excds added to the graph API, and that I added to reva.
2026-04-26 09:45:19 +02:00 · 2023-03-01 11:55:47 +01:00
parent b57504696b
commit 2f465fb5eb
6 changed files with 95 additions and 77 deletions
--- a/services/auth-basic/pkg/config/defaults/defaultconfig.go
+++ b/services/auth-basic/pkg/config/defaults/defaultconfig.go
@@ -38,25 +38,28 @@ func DefaultConfig() *config.Config {
 		AuthProvider: "ldap",
 		AuthProviders: config.AuthProviders{
 			LDAP: config.LDAPProvider{
-				URI:              "ldaps://localhost:9235",
-				CACert:           filepath.Join(defaults.BaseDataPath(), "idm", "ldap.crt"),
-				Insecure:         false,
-				UserBaseDN:       "ou=users,o=libregraph-idm",
-				GroupBaseDN:      "ou=groups,o=libregraph-idm",
-				UserScope:        "sub",
-				GroupScope:       "sub",
-				LoginAttributes:  []string{"uid"},
-				UserFilter:       "",
-				GroupFilter:      "",
-				UserObjectClass:  "inetOrgPerson",
-				GroupObjectClass: "groupOfNames",
-				BindDN:           "uid=reva,ou=sysusers,o=libregraph-idm",
-				IDP:              "https://localhost:9200",
+				URI:                      "ldaps://localhost:9235",
+				CACert:                   filepath.Join(defaults.BaseDataPath(), "idm", "ldap.crt"),
+				Insecure:                 false,
+				UserBaseDN:               "ou=users,o=libregraph-idm",
+				GroupBaseDN:              "ou=groups,o=libregraph-idm",
+				UserScope:                "sub",
+				GroupScope:               "sub",
+				LoginAttributes:          []string{"uid"},
+				UserFilter:               "",
+				GroupFilter:              "",
+				UserObjectClass:          "inetOrgPerson",
+				GroupObjectClass:         "groupOfNames",
+				BindDN:                   "uid=reva,ou=sysusers,o=libregraph-idm",
+				DisableUserMechanism:     "none",
+				LdapDisabledUsersGroupDN: "cn=DisabledUsersGroup,ou=groups,o=libregraph-idm",
+				IDP:                      "https://localhost:9200",
 				UserSchema: config.LDAPUserSchema{
 					ID:          "ownclouduuid",
 					Mail:        "mail",
 					DisplayName: "displayname",
 					Username:    "uid",
+					Enabled:     "ownCloudUserEnabled",
 				},
 				GroupSchema: config.LDAPGroupSchema{
 					ID:          "ownclouduuid",