Skip to content

PhilippMiller/admanager

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
.docker
.docker
 
 
app
app
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

AD Management API

Symfony PHP Docker License

👉 Project Overview

A Symfony-based REST API for managing users and groups via LDAP/Active Directory.

Features:

  • Search users by samAccountName or Email
  • Unlock, disable, and enable users
  • Reset user passwords
  • Add or remove users from groups
  • List groups & display group members
  • API documentation via Swagger UI

Note: LDAP and LDAPS (SSL) connections are dynamically controlled via the .env configuration.

👥 Target Audience

  • IT Administrators
  • DevOps Teams
  • Service Desk Integrations (e.g., Self-Service Password Reset)

🔧 Tech Stack

  • PHP 8.2
  • Symfony 6.4
  • Docker Compose
  • NelmioApiDocBundle v5 (Swagger UI)

🌐 Quickstart

1. Clone the repository

git clone https://github.com/YOUR_GITHUB_USER/ad-management-api.git
cd ad-management-api

2. Start Docker environment

docker compose up -d

3. Configure .env.local and add .env

Create a .env and .env.local file inside the app/ directory:

touch app/.env
nano app/.env.local
LDAP_HOST=ldaps://domain-constroller.my.domain
LDAP_PORT=636
LDAP_ENCRYPTION=ssl     # valid: ssl / none
LDAP_IGNORE_CERT=0      # valid: 0 / 1

LDAP_BASE_DN=dc=my,dc=domain
LDAP_USER_DN=DomainUser/Admin@my.domain
LDAP_PASSWORD=YOUR_PASSWORD

APP_SECRET=YOUR_TOP_SECRET_APP_SECRET

Notes:

  • Use ldap:// and port 389 for unencrypted connections
  • Use ldaps:// and port 636 for SSL/TLS secured connections

4. Install Composer dependencies

(Handled automatically by init.sh during Docker startup)
Or manually:

docker compose exec php composer install

📑 Available API Endpoints

All endpoints are documented in Swagger UI!

Method URL Description
GET /api/user/search Search for users
POST /api/user/{samAccountName}/unlock Unlock a user
POST /api/user/{samAccountName}/disable Disable a user
POST /api/user/{samAccountName}/enable Enable a user
POST /api/user/{samAccountName}/reset-password Reset a user's password
GET /api/group/list List all groups
GET /api/group/{groupName}/members List members of a group
POST /api/group/{groupName}/add-user/{samAccountName} Add a user to a group
POST /api/group/{groupName}/remove-user/{samAccountName} Remove a user from a group

🔒 Security

  • Secure LDAP login via LDAPS or StartTLS
  • Proper error handling for LDAP operations

💛 License

MIT License.

Developed with 💛 to automate Active Directory management.

About

Microsoft Active Directory RestFul API

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

Version 1.0 Latest
Apr 28, 2025

Packages

No packages published

Contributors 2

  •  
  •  

Languages