Class IdentityServiceUserConfig
Defines where users exist in the LDAP directory.
Implements
Inherited Members
Namespace: Google.Apis.GKEHub.v1alpha.Data
Assembly: Google.Apis.GKEHub.v1alpha.dll
Syntax
public class IdentityServiceUserConfig : IDirectResponseSchema
Properties
BaseDn
Required. The location of the subtree in the LDAP directory to search for user entries.
Declaration
[JsonProperty("baseDn")]
public virtual string BaseDn { get; set; }
Property Value
Type | Description |
---|---|
string |
ETag
The ETag of the item.
Declaration
public virtual string ETag { get; set; }
Property Value
Type | Description |
---|---|
string |
Filter
Optional. Filter to apply when searching for the user. This can be used to further restrict the user accounts which are allowed to login. This defaults to "(objectClass=User)".
Declaration
[JsonProperty("filter")]
public virtual string Filter { get; set; }
Property Value
Type | Description |
---|---|
string |
IdAttribute
Optional. Determines which attribute to use as the user's identity after they are authenticated. This is distinct from the loginAttribute field to allow users to login with a username, but then have their actual identifier be an email address or full Distinguished Name (DN). For example, setting loginAttribute to "sAMAccountName" and identifierAttribute to "userPrincipalName" would allow a user to login as "bsmith", but actual RBAC policies for the user would be written as "bsmith@example.com". Using "userPrincipalName" is recommended since this will be unique for each user. This defaults to "userPrincipalName".
Declaration
[JsonProperty("idAttribute")]
public virtual string IdAttribute { get; set; }
Property Value
Type | Description |
---|---|
string |
LoginAttribute
Optional. The name of the attribute which matches against the input username. This is used to find the user in the LDAP database e.g. "(=)" and is combined with the optional filter field. This defaults to "userPrincipalName".
Declaration
[JsonProperty("loginAttribute")]
public virtual string LoginAttribute { get; set; }
Property Value
Type | Description |
---|---|
string |