providers/ldap: rework Schema and DSE

[BeryJu]

Details

closes #5307
closes #3361

Changes

• Correctly respond for the RootDSE
  • Try to get the correct provider not only based on search base DN but also base on the bind DN
  • Search requests for base DN "" will get a RootDSE based on the Bind DN
  • Search requests for base DN "" will default to a minimal RootDSE
• Include an LDAP Schema for some custom types, this is still very much WIP

Checklist

• Local tests pass (ak test authentik/)
• The code has been formatted (make lint-fix)

If an API change has been made

• The API schema has been updated (make gen-build)

If changes to the frontend have been made

• The code has been formatted (make web)
• The translation files have been updated (make i18n-extract)

If applicable

• The documentation has been updated
• The documentation has been formatted (make website)

[codecov]

Codecov Report

Patch coverage has no change and project coverage change: -0.50 ⚠️

Comparison is base (e573b3a) 92.62% compared to head (79a7c3d) 92.11%.

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #5838      +/-   ##
==========================================
- Coverage   92.62%   92.11%   -0.50%     
==========================================
  Files         549      549              
  Lines       26326    26326              
==========================================
- Hits        24382    24248     -134     
- Misses       1944     2078     +134     

Flag	Coverage Δ
e2e	50.23% <ø> (-1.67%)	⬇️
integration	26.48% <ø> (ø)
unit	89.45% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

see 21 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

[github-actions]

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-providers-ldap-rework-1686229865-79a7c3d
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

For arm64, use these values:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-providers-ldap-rework-1686229865-79a7c3d-arm64
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
image:
    repository: ghcr.io/goauthentik/dev-server
    tag: gh-providers-ldap-rework-1686229865-79a7c3d

For arm64, use these values:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
image:
    repository: ghcr.io/goauthentik/dev-server
    tag: gh-providers-ldap-rework-1686229865-79a7c3d-arm64

Afterwards, run the upgrade commands from the latest release notes.

[netlify]

✅ Deploy Preview for authentik-storybook canceled.

Name	Link
🔨 Latest commit	79a7c3d
🔍 Latest deploy log	https://app.netlify.com/sites/authentik-storybook/deploys/6481d07f9ad9f60008784a3f

[netlify]

✅ Deploy Preview for authentik ready!

Name	Link
🔨 Latest commit	f7c51b8
🔍 Latest deploy log	https://app.netlify.com/sites/authentik/deploys/6481bb6203d6e500081ee7ab
😎 Deploy Preview	https://deploy-preview-5838--authentik.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site settings.