By the way I just got Mediawiki to work with LDAP login in my VM, using https://www.mediawiki.org/wiki/Extension:LDAPAuthentication2
What do you mean by Mastodon creating new accounts? Are you talking about LDAP accounts being created by Mastodon somehow? This is definitely not something that makes any sense
I think you still don't understand my question. In any case, the point is that Mastodon should never create new accounts, because those accounts then have no information about our other services stored.
If that's the case, then how are accounts the same between Mastodon and other services?
On log in with an account and password from LDAP it will find or create the user
Cool. Does that mean we can actually use the existing accounts? Or that we can at least migrate the existing accounts easily by adding those users to the LDAP directory?
I was thinking more like service=xmpp,service=mastodon and so on. Later, it will also need extra attributes for which namespace of which service it is.
All working in production now! You can try it out yourself.
Not sure what you mean. We can just use attributes to know if a user has access to a certain service or not.
App is now compiled to release dir: https://github.com/67P/akkounts-api/pull/6
So a decent integration always supports a custom "filter" config, which can be filled with the desired attributes, in order to select users that are allowed to use that service. Saw that in the GitLab doc as well.