Combine IP Restriction and LDAP Authentication plugin

henne23 · January 19, 2021, 11:14am

Hi folks,

I’m very new to Kong and just wondering how I could adapt following Apache config snippet.

<Location />
  AuthType Basic
  AuthBasicProvider ldap
  AuthLDAPURL "ldap://someldaphost:389/o=app?uid?sub"
  AuthName "WEB APP Access"
  Options None
  Order deny,allow
  deny from all
  satisfy any
  allow from A.A.A.A/255.255.255.0
  allow from B.B.B.B/255.255.255.0
  allow from C.C.C.C/255.255.255.0 
  require ldap-group cn=admin,ou=Groups,o=app
  require ldap-group cn=editors,ou=Groups,o=app
</Location>

So, I need to somehow combine IP Restriction and LDAP Authentication plugin which from my POV is not possible. I was thinking consumer.id may be worth a research but I don’t have a clue.

Does anybody have a solution? So I want the whitelist to be hitted by either CIDR or username/password fitting.

Thanks
Henning

Topic		Replies	Views
LDAP Authentication Plugin Questions	8	2273	April 10, 2023
lDAP-auth plugin	6	1898	March 18, 2019
ACL and LDAP not working together Questions	6	1523	May 4, 2019
LDAP-auth plugin help Questions	0	291	August 28, 2020
Kong authentication ldap + session + upstream api Questions	0	313	October 19, 2020

Combine IP Restriction and LDAP Authentication plugin

Related Topics