LDAP Connector
Interlock uses a custom made LDAP Connector that shares many of it’s functions and code with the django-python3-ldap module by etianen, albeit with a few fixes and modifications.
First of all the LDAP Connector allows for symmetrical Password Encryption, saving them in the database in a re-usable way to allow for User Operations to be done at the correct privilege level.
This is important as saving them in plain text would be extremely unsafe.
This means that the connector only does the initial User Authentication via a Bind User and Password with administrator privileges, and then performs every other operation with the actual User’s credentials.