GLAuth

GLAuth is a lightweight LDAP authentication server designed for development, CI pipelines, and home infrastructure. It provides an easy-to-run alternative to heavier directory services while supporting multiple configurable backends and LDAP/LDAPS endpoints.

Key Features

• LDAP and LDAPS listeners for authentication and directory queries
• Config-file backend for simple, single-binary deployments
• Pluggable/chained backends, including file-based storage, S3-backed storage, SQL via plugins, and proxying to existing LDAP servers
• Centralized management of users, groups, passwords, Linux account attributes, and SSH public keys
• Optional two-factor authentication designed to be transparent to LDAP client applications
• Suitable for lightweight directory needs across common infrastructure tools that support LDAP auth

Use Cases

• Centralizing user and group management for homelab or small server fleets
• Providing an LDAP auth endpoint for internal tools and CI environments
• Fronting or augmenting an existing LDAP directory with a proxy backend

Limitations and Considerations

• For production usage, LDAPS/TLS should be configured explicitly rather than relying on plaintext LDAP
• Some advanced directory/AD features may not be available compared to full OpenLDAP or Active Directory deployments

GLAuth is a practical choice when you need LDAP-compatible authentication with minimal operational overhead. Its backend flexibility makes it useful both as a standalone directory for small environments and as an integration layer alongside existing LDAP infrastructure.