ldap_ignore_attribute_create_modify_timestamp changelog + cosmetics in description

2025-04-02 20:57:37 +03:00 · 2025-03-25 07:11:36 +01:00 · 2025-03-25 07:11:36 +01:00 · 7fcf473662
commit 7fcf473662
parent d25786c190
3 changed files with 5 additions and 4 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -3,6 +3,7 @@
 ## 3.5.1.dev

 * Fix: auth/htpasswd related to detection and use of bcrypt
+* Add: option [auth] ldap_ignore_attribute_create_modify_timestamp for support of Authentik LDAP server

 ## 3.5.0

--- a/DOCUMENTATION.md
+++ b/DOCUMENTATION.md
@ -1065,8 +1065,8 @@ Default:
 _(>= 3.5.1)_

 Add modifyTimestamp and createTimestamp to the exclusion list of internal ldap3 client
-so that these schema attributes are not checked. This is needed for Authentik since
-Authentik does not provide these both attributes.
+so that these schema attributes are not checked. This is needed at least for Authentik
+LDAP server as not providing these both attributes.

 Default: false

--- a/4
+++ b/4
@ -74,8 +74,8 @@
 ## Expiration time of caching failed logins in seconds
 #cache_failed_logins_expiry = 90

-# Ignore modifyTimestamp and createTimestamp attributes. Needed if Authentik LDAP server is used. Uncomment then.
-#ldap_ignore_attribute_create_modify_timestamp = true  
+# Ignore modifyTimestamp and createTimestamp attributes. Required e.g. for Authentik LDAP server
+#ldap_ignore_attribute_create_modify_timestamp = false

 # URI to the LDAP server
 #ldap_uri = ldap://localhost