Skip to content

Commit 3fa5098

Browse files
jwilliams-mongojwilliams-mongo
committed
(DOCSP-11904): LDAP agent configuration is missing ldapGroupDN field
1 parent bcfa897 commit 3fa5098

File tree

3 files changed

+25
-0
lines changed

3 files changed

+25
-0
lines changed

source/includes/options-k8s-replica-set.yaml

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -436,6 +436,13 @@ inherit:
436436
file: options-k8s-shared.yaml
437437
---
438438
program: k8sRsConf
439+
name: spec.security.authentication.ldap.automationLdapGroupDN
440+
inherit:
441+
name: spec.security.authentication.ldap.automationLdapGroupDN
442+
program: _shared
443+
file: options-k8s-shared.yaml
444+
---
445+
program: k8sRsConf
439446
name: spec.security.authentication.ldap.userToDNMapping
440447
inherit:
441448
name: spec.security.authentication.ldap.userToDNMapping

source/includes/options-k8s-shared.yaml

Lines changed: 17 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -716,6 +716,23 @@ description: |
716716
.. seealso:: :manual:`LDAP Query Templates </core/security-ldap-external/#ldap-query-template>` in the MongoDB Manual
717717
---
718718
program: _shared
719+
name: spec.security.authentication.ldap.automationLdapGroupDN
720+
type: string
721+
directive: setting
722+
description: |
723+
724+
The Distinguished Name (DN) of the LDAP group to which the
725+
{+mdbagent+} user belongs.
726+
727+
This setting is required if:
728+
729+
- :setting:`spec.security.authentication.ldap.authzQueryTemplate` is
730+
present, and
731+
- :setting:`spec.security.authentication.agents.mode` is ``LDAP`` or
732+
``X509``.
733+
734+
---
735+
program: _shared
719736
name: spec.security.authentication.ldap.userToDNMapping
720737
type: string
721738
directive: setting

source/reference/k8s-operator-specification.txt

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -226,6 +226,7 @@ cluster resource types:
226226
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.ldap.bindQueryPasswordSecretRef.rst
227227
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.ldap.bindQueryPasswordSecretRef.name.rst
228228
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.ldap.authzQueryTemplate.rst
229+
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.ldap.automationLdapGroupDN.rst
229230
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.ldap.userToDNMapping.rst
230231
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.agents.rst
231232
.. include:: /includes/option/setting-k8sRsConf-spec.security.authentication.agents.mode.rst

0 commit comments

Comments
 (0)