FreeIAM is a free and flexible Identity and Access Management solution.

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for spaceone from gravatar.com spaceone

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • Author: Florian Best
  • Requires: Python >=3.11
  • Provides-Extra: dev , test , docs , benchmark
Report project as malware

Project description

CI pre-commit Coverage

Python 3.11+ Docs Ruff

PyPI Issues Security Policy REUSE status

License: MIT License: Apache 2

Free IAM - Free Identity and Access Management.

Free IAM is a flexible and open identity and access management system designed for interoperability, extensibility, and simplicity. It provides clean APIs, powerful abstractions, and deep integration with common identity schemata and directory services.

LDAP Client Library

FreeIAM offers both a asynchronous and synchronous LDAP client library for Python via freeiam.ldap, supporting the full range of client features. For usage examples and detailed API documentation, please refer to the official documentation.

import asyncio

from freeiam import ldap


async def main():
    async with ldap.Connection('ldap://localhost:389', timeout=30) as conn:
        # TLS
        conn.set_tls(ca_certfile='/path/to/ca.crt', require_cert=TLSOptionValue.Hard)
        await conn.start_tls()

        # authenticate
        await conn.bind('cn=admin,dc=freeiam,dc=org', 'iamfree')

        # search for DN and attrs
        for entry in await conn.search(search_base, Scope.Subtree, '(&(uid=*)(objectClass=person))'):
            print(entry.dn, entry.attr)

        # search iterative for DN and attrs
        async for entry in conn.search_iter(search_base, Scope.Subtree, '(&(uid=*)(objectClass=person))'):
            print(entry.dn, entry.attr)

        # search for DN
        async for entry in conn.search_dn(search_base, Scope.Subtree, '(&(uid=*)(objectClass=person))'):
            print(entry.dn)

        # search paginated via SimplePagedResult
        async for entry in conn.search_paged(
            search_base,
            Scope.Subtree,
            '(&(uid=*)(objectClass=person))',
            page_size=10,
        ):
            print(entry.dn, entry.attr, entry.page)

        # search paginated via VirtualListView + ServerSideSorting
        async for entry in conn.search_paginated(
            search_base,
            Scope.Subtree,
            '(&(uid=*)(objectClass=person))',
            page_size=10,
            sorting=[('uid', 'caseIgnoreOrderingMatch', False)]
        ):
            print(entry.dn, entry.attr, entry.page)

        # get a certain object, and use its attributes
        obj = await conn.get('uid=max.mustermann,dc=freeiam,dc=org')
        print(obj.dn, obj.attr)
        print(obj.attr['cn'])

        # get a attribute of an object
        cn = await conn.get_attr('uid=max.mustermann,dc=freeiam,dc=org', 'commonName')
        print(cn)


asyncio.run(main())

The same API exists synchronously:

from freeiam import ldap


with ldap.Connection('ldap://localhost:389', timeout=30) as conn:
    # TLS
    conn.set_tls(ca_certfile='/path/to/ca.crt', require_cert=TLSOptionValue.Hard)
    conn.start_tls()

    # authenticate
    conn.bind('cn=admin,dc=freeiam,dc=org', 'iamfree')

    # search for DN and attrs
    for entry in conn.search(search_base, Scope.Subtree, '(&(uid=*)(objectClass=person))'):
        print(entry.dn, entry.attr)

Documentation

Comprehensive documentation is available to help you get started quickly and to explore advanced features. It includes usage guides, API references, and example code snippets.

Visit the official documentation site here: https://docs.freeiam.org/

Changelog

This project follows Semantic Versioning to manage releases.

A detailed, human-readable changelog is maintained and can be found here: CHANGELOG.md.

Contributing

Contributions are very welcome!

Please read our CONTRIBUTING.md for guidelines on how to get started, coding standards, and the pull request process. If you want to report bugs, request features, or discuss improvements, please open an issue on GitHub.

License

This project is dual-licensed under the following licenses, giving fully flexibility:

See the LICENSES files for more details.

Test Coverage

The project currently maintains 100% test coverage, ensuring that all code paths are exercised by automated tests. This helps guarantee reliability, correctness, and ease of future maintenance.

LDAP client benchmarks

Current benchmarks indicate that the synchronous non-iterable methods offer the best performance. The benchmark suite compares FreeIAM (freeiam.ldap) against Python-LDAP (ldap), LDAP3 (ldap3), and Bonsai (bonsai).

Please note this is a work in progress (WIP) and the benchmark coverage and accuracy will be improved over time.

Testname Min (us) Max (us) Mean (us) StdDev (us) Median (us) IQR (us) Outliers OPS Rounds Iterations
test_sync_search[ldap-noiter] 336.42 1762.35 466.35 132.87 428.97 103.48 120;76 2144.33 1418 1
test_sync_search[freeiam-noiter] 381.79 1425.61 572.07 118.68 545.87 109.69 165;51 1748.04 1143 1
test_sync_search[bonsai-noiter] 446.28 1514.67 680.02 138.66 645.65 111.18 113;55 1470.55 861 1
test_sync_search[freeiam-iter] 692.62 2134.28 958.01 186.67 913.93 169.14 72;29 1043.83 488 1
test_sync_search[ldap3-noiter] 1181.49 3948.65 1603.93 333.01 1518.64 253.67 71;43 623.47 482 1
test_async_search[freeiam-noiter] 1577.63 6493.86 2659.18 634.62 2430.03 676.09 58;22 376.06 328 1
test_async_search[freeiam-iter] 2768.34 5792.08 3479.36 598.57 3279.16 579.05 34;11 287.41 169 1
test_parallel_sync_search[freeiam] 12317.69 46028.09 14145.28 4472.71 13232.57 972.18 1;4 70.70 55 1
test_multiple_parallel_sync_search[freeiam] 33453.03 39019.64 35980.09 1332.03 36083.70 1862.24 10;0 27.79 28 1

Project Goals

  • Clean and extensible APIs and libraries
  • Standards-first: implements what standards allow - no artificial limitations
  • Identity and access management based on standardized object types:
    • Users
    • Groups
    • Containers
    • Organizational Units (OUs)
    • etc.
    • Authorizations
    • Roles
  • Full support for widely used directory schemata:
    • POSIX
    • Kerberos
    • Samba
    • FreeIPA
    • Univention Corporate Server (UCS)
  • Flexible composition of object classes (define your own object model)
  • Compatibility with major LDAP servers:
    • OpenLDAP
    • 389 Directory Server
    • Samba
    • Microsoft Active Directory
  • Data migration and synchronization connectors for diverse LDAP schemas
  • Fully asynchronous, non-blocking I/O architecture
  • HTTP API
  • OAuth 2.0 SASL OAUTHBEARER bind support
  • Integrated SCIM representation for modern interoperability
  • Modular and configurable web UI:
    • Configurable layouts: e.g. simple, advanced, wizard-based, profile views
    • Customizable data representations and mappings
    • Unified abstractions for common directory operations
    • User-friendly and modern terminology
  • Dynamic configuration via LDAP entries or static YAML files
  • Maybe: Built-in event system for tracking object changes and triggers

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for spaceone from gravatar.com spaceone

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • Author: Florian Best
  • Requires: Python >=3.11
  • Provides-Extra: dev , test , docs , benchmark

Release history Release notifications | RSS feed

0.9.0

0.8.0

0.7.0

0.6.0

0.5.0

This version

0.4.0

0.3.0

0.2.0

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

freeiam-0.4.0.tar.gz (38.5 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

freeiam-0.4.0-py3-none-any.whl (36.1 kB view details)

Uploaded Python 3

File details

Details for the file freeiam-0.4.0.tar.gz.

File metadata

  • Download URL: freeiam-0.4.0.tar.gz
  • Upload date:
  • Size: 38.5 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for freeiam-0.4.0.tar.gz
Algorithm Hash digest
SHA256 90e1e0ba942459082bbb8c16b72b9c34dd0021bce18ddd9cfba06d3b2412cd14
MD5 8153176e21ed00a6ad24e2162f63c241
BLAKE2b-256 b0acd9981535b3d7a09eebd36413c7147d07497fc5644709f62686bef95d217b

See more details on using hashes here.

Provenance

The following attestation bundles were made for freeiam-0.4.0.tar.gz:

Publisher: release.yml on Free-IAM/freeiam

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file freeiam-0.4.0-py3-none-any.whl.

File metadata

  • Download URL: freeiam-0.4.0-py3-none-any.whl
  • Upload date:
  • Size: 36.1 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for freeiam-0.4.0-py3-none-any.whl
Algorithm Hash digest
SHA256 1fce3f2bec44f680786e02294f32a222e77be2702d1e1325b85212ec4db34c76
MD5 e9860357c028cc521fb890dbd8d9f382
BLAKE2b-256 ff0b18f224a7090b0b29d245c21d56e453921b0d9426e854e74d7c8483cd2f17

See more details on using hashes here.

Provenance

The following attestation bundles were made for freeiam-0.4.0-py3-none-any.whl:

Publisher: release.yml on Free-IAM/freeiam

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page