气流版本:1.10.6
LDAP连接-使用webserver_config.py文件。
当前,我们有一个LDAP域,其中有多个LDAP服务器以实现高可用性
Example
ldaps://ldapserver.dns.org
This would resolve to any of the server IPs
172.18.234.1
172.18.234.2
172.18.234.1
我如何使它正常工作? (使用LDAP高可用性配置)。
通过在/ etc / hosts中添加特定IP并在webserver_config,py中使用该IP,我可以使其在一台服务器上正常工作
#/etc/hosts
# LDAP
170.18.234.119 ldaps://ldapserver.dns.org
# webserver_config.py
import os
from airflow import configuration as conf
from flask_appbuilder.security.manager import AUTH_LDAP
basedir = os.path.abspath(os.path.dirname(__file__))
SQLALCHEMY_DATABASE_URI = conf.get('core', 'SQL_ALCHEMY_CONN')
CSRF_ENABLED = True
AUTH_TYPE = AUTH_LDAP
AUTH_ROLE_ADMIN = 'Admin'
AUTH_ROLE_PUBLIC = 'Public'
AUTH_USER_REGISTRATION = True
AUTH_USER_REGISTRATION_ROLE = "Admin"
#AUTH_USER_REGISTRATION_ROLE = "Viewer"
AUTH_LDAP_SERVER = 'ldaps://ldapserver.dns.org'
AUTH_LDAP_SEARCH = "DC=XX,DC=XX,DC=XX,DC=XX"
AUTH_LDAP_BIND_USER = 'USER'
AUTH_LDAP_BIND_PASSWORD = 'PASSWORD'
AUTH_LDAP_UID_FIELD = 'sAMAccountName'
AUTH_LDAP_USE_TLS = False
AUTH_LDAP_ALLOW_SELF_SIGNED = True
AUTH_LDAP_TLS_CACERTFILE = '/etc/airflow/ldap.pem'