krakend/dex/config-ldap.yaml

issuer: http://127.0.0.1:5556/dex

storage:
  type: postgres
  config:
    host: postgresd
    port: 5432
    database: dex
    user: dex
    password: postgres
    ssl:
      mode: disable

connectors:
- type: ldap
  name: OpenLDAP
  id: ldap
  config:
    host: ldap:389

    insecureNoSSL: true

    bindDN: cn=admin,dc=example,dc=org
    bindPW: admin

    usernamePrompt: Email Address

    userSearch:
      baseDN: ou=People,dc=example,dc=org
      filter: "(objectClass=person)"
      username: mail
      idAttr: DN
      emailAttr: mail
      nameAttr: cn

    groupSearch:
      baseDN: ou=Groups,dc=example,dc=org
      filter: "(objectClass=groupOfNames)"

      userMatchers:
      - userAttr: DN
        groupAttr: member

      nameAttr: cn

web:
  http: 0.0.0.0:5556

staticClients:
- id: example-app
  redirectURIs:
  - 'http://127.0.0.1:5555/callback'
  name: 'Example App'
  secret: ZXhhbXBsZS1hcHAtc2VjcmV0