.. image:: https://travis-ci.org/luciddg/auth-tool.svg?branch=master
.. image:: https://readthedocs.org/projects/auth-tool/badge/?version=latest
:alt: Documentation Status
AuthTool is a self-service password reset and SSH public key management application for OpenLDAP directories.
- Forgotten passwords can be reset using a token sent by email.
- Forgotten username reminders can be sent by email.
- Passwords can be changed using the current password.
- SSH public keys can be validated and added or deleted.
This application makes many assumptions about your LDAP server's configuration and schema.
sshPublicKey_ schema from the
.. _sshPublicKey: https://github.com/AndriiGrytsenko/openssh-ldap-publickey/blob/master/misc/openssh-lpk-openldap.schema
.. _openssh-ldap-publickey: https://github.com/AndriiGrytsenko/openssh-ldap-publickey
This application assumes anonymous binds are permitted for obtaining limited user information.
A service account is used for administrative operations such as setting passwords.
You can run AuthTool in two supported ways: Docker and locally.
Both use the same interface, so it comes down to personal preference.
.. image:: https://img.shields.io/docker/pulls/luciddg/auth-tool.svg
.. image:: https://img.shields.io/docker/stars/luciddg/auth-tool.svg
A Dockerfile is included to build and run the application.
This application is meant to use the internal CherryPy server. Therefore, it can simply be run using the provided module: