Merge pull request #66 from github/primetheus/azure-ad-support

add tzdata to Dockerfile
3rd-party-integrations · Mar 24, 2021 · d1b07f9 · d1b07f9
2 parents a58973b + cd8cd93
commit d1b07f9
Show file tree

Hide file tree

Showing 2 changed files with 26 additions and 3 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -4,6 +4,10 @@ LABEL version="2.1"
 LABEL description="LDAP Team Sync for GitHub"
 LABEL maintainer="GitHub Services <[email protected]>"
 
+ARG TZ='UTC'
+
+ENV DEFAULT_TZ ${TZ}
+
 COPY . /opt/github-team-sync
 WORKDIR /opt/github-team-sync
 
@@ -16,7 +20,11 @@ RUN apk add --no-cache \
         libffi-dev \
         build-base \
         openssl-dev \
-        cargo
+        cargo \
+        tzdata
+
+# Fix the warning where no timezone is specified
+RUN cp /usr/share/zoneinfo/${DEFAULT_TZ} /etc/localtime
 
 RUN pip install --no-cache-dir --upgrade pipenv
 

diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # GitHub Team Sync
 This utility is intended to enable synchronization between GitHub and various LDAP and SAML providers.
-This is particularly useful for large organizations with many teams that either use GitHub Enterprise Cloud, 
+This is particularly useful for large organizations with many teams that either use GitHub Enterprise Cloud,
 do not use LDAP for authentication, or use a SAML provider other than what is natively supported.
 It supports both GitHub.com, GitHub Enterprise Server (GHES) and GitHub , but it will need to live in a location that can access your LDAP servers.
 
@@ -59,6 +59,21 @@ This utility provides the following functionality:
 | --- | --- | --- |
 | `Team` | Optional | Trigger when a new team is `created`, `deleted`, `edited`, `renamed`, etc. |
 
+#### Azure AD Permissions
+**Authentication methods**
+- [ ] Username/Password
+- [x] Service Principal
+- [ ] Certificate
+- [ ] Device Auth
+
+This app requires the following Azure permissions:
+
+- `Directory.Read.All`
+- `Group.Read.All`
+- `GroupMember.Read.All`
+- `Organization.Read.All`
+- `User.Read.All`
+
 ## Getting Started
 To get started, ensure that you are using **Python 3.4+**. The following additional libraries are required:
 
@@ -200,4 +215,4 @@ This project draws much from:
 - [github3.py](https://github.com/sigmavirus24/github3.py)
 - [msal](https://github.com/AzureAD/microsoft-authentication-library-for-python)
 - [okta](https://github.com/okta/okta-sdk-python)
-- [ldap3](https://github.com/cannatag/ldap3)
+- [ldap3](https://github.com/cannatag/ldap3)