You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@brooklyn.apache.org by jc...@apache.org on 2021/09/07 12:11:34 UTC

[brooklyn-docs] 01/01: Update brooklyn_cfg.md

This is an automated email from the ASF dual-hosted git repository.

jcabrerizo pushed a commit to branch fix/ldap/user_regex
in repository https://gitbox.apache.org/repos/asf/brooklyn-docs.git

commit 22078b4fe39a95d44f38e2b12c756883a947a2eb
Author: Juan Cabrerizo <ju...@cloudsoft.io>
AuthorDate: Tue Sep 7 13:11:28 2021 +0100

    Update brooklyn_cfg.md
---
 guide/ops/configuration/brooklyn_cfg.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/guide/ops/configuration/brooklyn_cfg.md b/guide/ops/configuration/brooklyn_cfg.md
index dd97a71..9a4f8bf 100644
--- a/guide/ops/configuration/brooklyn_cfg.md
+++ b/guide/ops/configuration/brooklyn_cfg.md
@@ -136,7 +136,7 @@ The other things you need to set in `brooklyn.cfg` are:
 
 * `brooklyn.webconsole.security.ldap.url` - ldap connection url
 * `brooklyn.webconsole.security.ldap.user_name_regex` *optional* none by default- regex pattern for usernames. If it's 
-  configured, non-matching usernames will be rejected without checking the credentials in the LDAP server  
+  configured, non-matching usernames will be rejected without checking the credentials in the LDAP server. Special characters need to be escaped
 * `brooklyn.webconsole.security.ldap.realm` - ldap dc parameter (domain)
 * `brooklyn.webconsole.security.ldap.allowed_realms_regex` - allows multiple realms (domains) that match regex - username must 
   be of form domain\user
@@ -155,7 +155,7 @@ brooklyn.webconsole.security.provider=org.apache.brooklyn.rest.security.provider
 brooklyn.webconsole.security.ldap.url=ldap://localhost:10389/????X-BIND-USER=uid=admin%2cou=system,X-BIND-PASSWORD=secret,X-COUNT-LIMIT=1000
 brooklyn.webconsole.security.ldap.realm=example.com
 # username regext pattern for <DOMAIN>\<USERNAME>
-brooklyn.webconsole.security.ldap.user_name_regex=.*\\.*
+brooklyn.webconsole.security.ldap.user_name_regex=.*\\\\\\\\.*
 ~~~
 
 After you setup the brooklyn connection to your LDAP server, you can authenticate in brooklyn using your cn (e.g. John Smith) and your password.