Replies: 1 comment
-
|
Any updates for the question? I have same security concern here @nabokihms |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hello,
The documentation explain that : "Dex attempts to bind with the backing LDAP server using the end user’s plain text password. Though some LDAP implementations allow passing hashed passwords, dex doesn’t support hashing [...].
-> https://dexidp.io/docs/connectors/ldap/#security-considerations
Why is not possible for Dex to use hashed password ? For security reasons, administrator should not read user's plain text password. It's seem to be a big limitation for using Dex.
I guess there are something blocking the possibilites for dex to use hashed password. I'm curious to know what is it and how may be I can help to fix that it if possible.
Thanks
Beta Was this translation helpful? Give feedback.
All reactions