ldap2pg: Streamlined PostgreSQL Role Management
ldap2pg is a powerful tool designed to facilitate the synchronization of PostgreSQL roles and privileges with enterprise directories using YAML configurations or LDAP. It automates the creation, updating, and removal of roles while ensuring that privilege management aligns seamlessly with organizational requirements.
Features
Supports role management through expressive YAML configuration files.
Automates the creation, alteration, and deletion of PostgreSQL roles based on LDAP searches.
Enables the establishment of static roles from YAML to complement LDAP entries.
Manages role hierarchies effectively with parent-child relationships.
Grants and revokes privileges dynamically or statically based on LDAP data.
Includes a dry run and check mode for safe operations.
Logs LDAP searches as `ldapsearch` commands for transparency.
Records all executed SQL statements for auditing purposes.