Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PeerTube Plugin auth-ldap - Value for "Path to LDAP Server Certificate Chain of Trust" #6875

Open
ritteraf opened this issue Feb 6, 2025 · 0 comments
Open

PeerTube Plugin auth-ldap - Value for "Path to LDAP Server Certificate Chain of Trust" #6875

ritteraf opened this issue Feb 6, 2025 · 0 comments

Comments

@ritteraf
Copy link

ritteraf commented Feb 6, 2025

Describe the problem

As the title says, I'm trying to setup LDAPS authentication for PeerTube. In the plugin setup, it asks for the "path to ldap server certificate chain of trust".

I've been googling for over an hour, and all of the example configs people have posted show nothing for this value. Is it needed? Can it be left blank? I am running secure ldap over port 636. Do I have to run just non secure LDAP?

I believe having an incorrect value in the field above is causing my issue, but here is a paste from the logs incase it's something else. I've edited out my public IP and domain name for security reasons, and changed it to "example":

[10.22.224.3:9000 peertube-plugin-auth-ldap] 2025-02-06 14:49:33.490 warn: Could not load custom CA in LDAP plugin {
"err": {
"stack": "Error: ENOENT: no such file or directory, open 'ldaps://example.com:636'",
"message": "ENOENT: no such file or directory, open 'ldaps://example.com:636'",
"errno": -2,
"code": "ENOENT",
"syscall": "open",
"path": "ldaps://example.com:636"
}
}
[10.22.224.3:9000 peertube-plugin-auth-ldap] 2025-02-06 14:51:46.019 warn: Cannot login ritteraf in LDAP plugin. {
"err": {
"stack": "Error: connect ETIMEDOUT example:636\n at TCPConnectWrap.afterConnect [as oncomplete] (node:net:1555:16)",
"message": "connect ETIMEDOUT example:636",
"errno": -110,
"code": "ETIMEDOUT",
"syscall": "connect",
"address": "example",
"port": 636
}
}
[10.22.224.3:9000] 2025-02-06 14:51:46.042 warn: Login error {
"err": {
"stack": "invalid_grant: Invalid grant: user credentials are invalid\n at handlePasswordGrant (file:///app/dist/core/lib/auth/oauth.js:112:15)\n at process.processTicksAndRejections (node:internal/process/task_queues:95:5)\n at async handleToken (file:///app/dist/core/controllers/api/users/token.js:32:23)",
"message": "Invalid grant: user credentials are invalid",
"statusCode": 400,
"status": 400,
"code": 400,
"name": "invalid_grant"
}
}

Additional information

  • PeerTube instance URL:
  • PeerTube version:
  • NodeJS version:
  • Ffmpeg version:
  • Redis version:
  • PostgreSQL version:
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ritteraf