In order to be able to authenticate using other authentication origin credentials, it will be necessary defining some parameter present in the configuration.yml file. In this section, it will be possible defining as many authentication origins as needed.
authenticationOrigins:
- id: ldap1
type: LDAP # At the moment, only LDAP type is supported
host: ldap://localhost:9000
options:
usersSearch: dc=ge,dc=co,dc=uk
groupsSearch: ou=general,ou=groups,dc=ge,dc=co,dc=uk
- id: ldap2
type: LDAP # At the moment, only LDAP type is supported
host: ldap://localhost:8000
options:
usersSearch: dc=ge,dc=co,dc=uk
groupsSearch: ou=general,ou=groups,dc=ge,dc=co,dc=uk
In the below example, we would be defining two different LDAP authentication origins (defined in the type variable). The first one receives the id ldap1 and the host is in ldap://localhost:9000, whereas the second one has the id ldap2 with a different host.
The usersSearch and groupsSearch fields are of real importance. In this string fields admins will have to define the naming context to search for users and groups respectively in that authentication origin.
Supported Operations
Once OpenCGA is installed with the proper configuration file, the next step would be adding users from these authenticated origins. To do this, two admin command lines have been added to opencga-admin.sh script.