Group LDAP links¶
Info
This section requires GitLab Premium (paid). (This is a GitLab's limitation, not GitLabForm's.)
This section purpose is to manage group membership via LDAP.
Key names here are just any labels, except if the key name is enforce
and is set to true
- then only the group LDAP links defined here will remain in the group, all other will be deleted.
Values are like documented at LDAP Group Links section of the Groups API docs, except the id.
The provider
should be set to a value that can be found in the GitLab web UI, here:
- it's "ldapmain" in this example.
The access_level
should be set to one of the valid access levels.
Example:
projects_and_groups:
group_1/*:
group_ldap_links:
devops_are_maintainers: # this is just a label
provider: AD
cn: devops
group_access: maintainer
app_devs_are_developers: # this is just a label
provider: AD
filter: "(employeeType=developer)"
group_access: developer
enforce: true # optional