Python 3.x 如何检查给定用户是否是指定LDAP组的一部分
我正在通过LDAP服务器对用户进行身份验证,它可以正常工作,但如果用户是给定组的一部分,我尝试添加一个过滤器来拒绝标识 我的保存用户如下所示:Python 3.x 如何检查给定用户是否是指定LDAP组的一部分,python-3.x,flask,ldap,flask-sqlalchemy,Python 3.x,Flask,Ldap,Flask Sqlalchemy,我正在通过LDAP服务器对用户进行身份验证,它可以正常工作,但如果用户是给定组的一部分,我尝试添加一个过滤器来拒绝标识 我的保存用户如下所示: # Declare a User Loader for Flask-Login. # Simply returns the User if it exists in our 'database', otherwise # returns None. @login_manager.user_loader def load_user(id): if
# Declare a User Loader for Flask-Login.
# Simply returns the User if it exists in our 'database', otherwise
# returns None.
@login_manager.user_loader
def load_user(id):
if id in users:
return users[id]
return None
# Declare The User Saver for Flask-Ldap3-Login
# This method is called whenever a LDAPLoginForm() successfully validates.
# Here you have to save the user, and return it so it can be used in the
# login controller.
@ldap_manager.save_user
def save_user(dn, username, data, memberships):
user = User(dn, username, data)
users[dn] = user
return user
@app.route('/login', methods=['GET', 'POST'])
def login():
# Instantiate a LDAPLoginForm which has a validator to check if the user
# exists in LDAP.
form = LDAPLoginForm()
if form.validate_on_submit():
login_user(form.user)
return redirect('/') # Send them home
return render_template("login.html", form=form)
我的登录功能如下所示:
# Declare a User Loader for Flask-Login.
# Simply returns the User if it exists in our 'database', otherwise
# returns None.
@login_manager.user_loader
def load_user(id):
if id in users:
return users[id]
return None
# Declare The User Saver for Flask-Ldap3-Login
# This method is called whenever a LDAPLoginForm() successfully validates.
# Here you have to save the user, and return it so it can be used in the
# login controller.
@ldap_manager.save_user
def save_user(dn, username, data, memberships):
user = User(dn, username, data)
users[dn] = user
return user
@app.route('/login', methods=['GET', 'POST'])
def login():
# Instantiate a LDAPLoginForm which has a validator to check if the user
# exists in LDAP.
form = LDAPLoginForm()
if form.validate_on_submit():
login_user(form.user)
return redirect('/') # Send them home
return render_template("login.html", form=form)
我有一个叫“我的小组”的小组。在使用LDAPLoginForm时,是否有方法复制LDAP\u group\u必需的功能