LDAP is often used to do a centralized user and role management in an enterprise environment. PostgreSQL offers different authentication methods, like LDAP, SSPI, GSSAPI or SSL. However, for any method the user must already exist in the database, before the authentication can be used. There is currently no authorization of database users directly based on LDAP. This program helps to solve the issue by synchronizing users, groups and their memberships from LDAP to PostgreSQL. Access to LDAP is read-only. <tt>pg_ldap_sync</tt> issues proper CREATE ROLE, DROP ROLE, GRANT and REVOKE commands to synchronize users and groups. It is meant to be started as a cron job.
Required Ruby Version
None
Authors
Lars Kanis
Versions
- 0.5.3 November 02, 2025 (20.5 KB)
- 0.5.2 September 01, 2025 (20.5 KB)
- 0.5.1 March 22, 2025 (19.5 KB)
- 0.5.0 August 24, 2023 (19.5 KB)
- 0.4.0 December 02, 2022 (19 KB)
- 0.1.0 July 13, 2011 (12 KB)