| pk |
uuid::Uuid |
|
[readonly] |
| name |
String |
Source's display Name. |
|
| slug |
String |
Internal source name, used in URLs. |
|
| enabled |
Option<bool> |
|
[optional] |
| authentication_flow |
Option<uuid::Uuid> |
Flow to use when authenticating existing users. |
[optional] |
| enrollment_flow |
Option<uuid::Uuid> |
Flow to use when enrolling new users. |
[optional] |
| component |
String |
Get object component so that we know how to edit the object |
[readonly] |
| verbose_name |
String |
Return object's verbose_name |
[readonly] |
| verbose_name_plural |
String |
Return object's plural verbose_name |
[readonly] |
| meta_model_name |
String |
Return internal model name |
[readonly] |
| policy_engine_mode |
Option<models::PolicyEngineMode> |
|
[optional] |
| user_matching_mode |
Option<models::UserMatchingModeEnum> |
How the source determines if an existing user should be authenticated or a new user enrolled. * identifier - Use the source-specific identifier * email_link - Link to a user with identical email address. Can have security implications when a source doesn't validate email addresses. * email_deny - Use the user's email address, but deny enrollment when the email address already exists. * username_link - Link to a user with identical username. Can have security implications when a username is used with another source. * username_deny - Use the user's username, but deny enrollment when the username already exists. |
[optional] |
| managed |
Option<String> |
Objects that are managed by authentik. These objects are created and updated automatically. This flag only indicates that an object can be overwritten by migrations. You can still modify the objects via the API, but expect changes to be overwritten in a later update. |
[readonly] |
| user_path_template |
Option<String> |
|
[optional] |
| icon |
Option<String> |
Get the URL to the Icon. If the name is /static or starts with http it is returned as-is |
[readonly] |
| server_uri |
String |
|
|
| peer_certificate |
Option<uuid::Uuid> |
Optionally verify the LDAP Server's Certificate against the CA Chain in this keypair. |
[optional] |
| client_certificate |
Option<uuid::Uuid> |
Client certificate to authenticate against the LDAP Server's Certificate. |
[optional] |
| bind_cn |
Option<String> |
|
[optional] |
| start_tls |
Option<bool> |
|
[optional] |
| sni |
Option<bool> |
|
[optional] |
| base_dn |
String |
|
|
| additional_user_dn |
Option<String> |
Prepended to Base DN for User-queries. |
[optional] |
| additional_group_dn |
Option<String> |
Prepended to Base DN for Group-queries. |
[optional] |
| user_object_filter |
Option<String> |
Consider Objects matching this filter to be Users. |
[optional] |
| group_object_filter |
Option<String> |
Consider Objects matching this filter to be Groups. |
[optional] |
| group_membership_field |
Option<String> |
Field which contains members of a group. |
[optional] |
| object_uniqueness_field |
Option<String> |
Field which contains a unique Identifier. |
[optional] |
| sync_users |
Option<bool> |
|
[optional] |
| sync_users_password |
Option<bool> |
When a user changes their password, sync it back to LDAP. This can only be enabled on a single LDAP source. |
[optional] |
| sync_groups |
Option<bool> |
|
[optional] |
| sync_parent_group |
Option<uuid::Uuid> |
|
[optional] |
| property_mappings |
Option<Vecuuid::Uuid> |
|
[optional] |
| property_mappings_group |
Option<Vecuuid::Uuid> |
Property mappings used for group creation/updating. |
[optional] |
| connectivity |
Option<std::collections::HashMap<String, std::collections::HashMap<String, String>>> |
Get cached source connectivity |
[readonly] |