config setting to sync some user attributes from LDAP upon every login
Tested on Gitlab CE 9.2.2
Description
LDAP mapped user attributes like first_name, last_name, name are used only when the account is first created in gitlab on successful login.
On further successful logins (so the user has an ldap identity set), user attributes in gitlab aren't sync'd from LDAP any more except for email which is set from ldap upon every successful login (aka "Your email address was automatically set based on the LDAP server.").
Proposal
I propose a feature that allow specific attributes to be overwritten upon every login, like name, first_name. In other words, kind of extending what's being do for email field to other fields, with the help of configuration directives.
Use cases
It is intended for admins that don't want their user name to be different as they are in the LDAP directory. example: the 'name' attribute is sync'd up at every successful login and set as read only in the user's profile in gitlab.
Feature checklist
Make sure these are completed before closing the issue, with a link to the relevant commit.
-
Feature assurance -
Documentation -
Added to features.yml