Feature: Per-Tenant Authentication Strategy Resolution #25
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Motivation
Currently, the authentication strategy is global. Tenants need to use different authentication methods (e.g., family A uses the local user database, family B uses their LDAP directory, production uses Authelia headers).
Description
Implement a dynamic
TenantAwarePasswordAuthenticatorthat checks the current tenant's database settings at runtime and delegates credentials checking to the appropriate authenticator (LocalPasswordAuthenticator,LdapPasswordAuthenticator).User Story
As a tenant user, I want to log in using the authentication strategy configured for my specific family/subdomain so that I can use my preferred credentials provider.
Gherkin Feature
Acceptance Criteria
TenantAwarePasswordAuthenticatorimplemented, delegating based on runtime tenant settings.LdapPasswordAuthenticatorrefactored to accept configuration settings dynamically instead of reading$_ENVdirectly.AppBootstrap.phpto wire the new tenant-aware authenticators.