From 08ca239e5a7b29a3a1a67c32572932c097d6a913 Mon Sep 17 00:00:00 2001
From: Dmitry Ivanov <ivadmi5@gmail.com>
Date: Wed, 2 Aug 2023 15:29:24 +0300
Subject: [PATCH] fix: Add changelog for LDAP

Better late than never.
---
 .../unreleased/support-ldap-authentication.md | 27 +++++++++++++++++++
 1 file changed, 27 insertions(+)
 create mode 100644 changelogs/unreleased/support-ldap-authentication.md

diff --git a/changelogs/unreleased/support-ldap-authentication.md b/changelogs/unreleased/support-ldap-authentication.md
new file mode 100644
index 0000000000..964106a2f0
--- /dev/null
+++ b/changelogs/unreleased/support-ldap-authentication.md
@@ -0,0 +1,27 @@
+## feat/box
+
+This authentication method doesn't store any secrets; instead,
+we delegate the whole auth to a pre-configured LDAP server. In
+the method's implementation, we connect to the LDAP server and
+perform a BIND operation which checks user's credentials.
+
+Usage example:
+
+```lua
+-- Set the default auth method to LDAP and create a new user.
+-- NOTE that we still have to provide a dummy password; otherwise
+-- box.schema.user.create will setup an empty auth data.
+box.cfg({auth_type = 'ldap'})
+box.schema.user.create('demo', { password = '' })
+
+-- Configure LDAP server connection URL and DN format string.
+os = require('os')
+os.setenv('TT_LDAP_URL', 'ldap://localhost:1389')
+os.setenv('TT_LDAP_DN_FMT', 'cn=$USER,ou=users,dc=example,dc=org')
+
+-- Authenticate using the LDAP authentication method via net.box.
+conn = require('net.box').connect(uri, {
+    user = 'demo',
+    password = 'password',
+    auth_type = 'ldap',
+})
-- 
GitLab