Combine IP Restriction and LDAP Authentication plugin

Hi folks,

I’m very new to Kong and just wondering how I could adapt following Apache config snippet.

<Location />
  AuthType Basic
  AuthBasicProvider ldap
  AuthLDAPURL "ldap://someldaphost:389/o=app?uid?sub"
  AuthName "WEB APP Access"
  Options None
  Order deny,allow
  deny from all
  satisfy any
  allow from A.A.A.A/255.255.255.0
  allow from B.B.B.B/255.255.255.0
  allow from C.C.C.C/255.255.255.0 
  require ldap-group cn=admin,ou=Groups,o=app
  require ldap-group cn=editors,ou=Groups,o=app
</Location>

So, I need to somehow combine IP Restriction and LDAP Authentication plugin which from my POV is not possible. I was thinking consumer.id may be worth a research but I don’t have a clue.

Does anybody have a solution? So I want the whitelist to be hitted by either CIDR or username/password fitting.

Thanks
Henning


© 2019 Kong Inc.    Terms  •  Privacy  •  FAQ