In section 3.2 (“LDAP Connector”) is it correct to say that the “ldap_auth” section should contain list items rather than map key/value pairs? (I may have my YAML terminology a bit wrong.) In the example below it appears the first “ldap_auth” configuration (referencing “ldap1”) may be incorrect (whereas the second, referencing “ldap2” seems to be correct).
Thoughts? (If one of these is incorrect, the documentation may need to be updated.)
(I had been struggling for a while to get my “ldap_auth” configuration to work using the first syntax below; but when when I switched to the second syntax below, it does.)
- name: Accept requests from users in group team1 on index1 type: allow ldap_auth: name: "ldap1" # ldap name from below 'ldaps' section groups: ["g1", "g2"] # group within 'ou=Groups,dc=example,dc=com' indices: ["index1"] - name: Accept requests from users in group team2 on index2 type: allow ldap_auth: - name: "ldap2" groups: ["g3"] cache_ttl_in_sec: 60 indices: ["index2"]