Skills skill-org-ldap

apiVersion: skill.ooder.net/v1 kind: Skill

metadata: id: skill-org-ldap name: LDAP Organization version: 0.7.3 category: org description: LDAP组织服务 - 提供基于LDAP的组织架构管理和用户认证能力 author: Ooder Team license: Apache-2.0 homepage: https://gitee.com/ooderCN/skills/tree/main/skills/skill-org-ldap repository: https://gitee.com/ooderCN/skills.git keywords: - ldap - org - authentication - organization - directory

spec: skillForm: DRIVER skillCategory: SERVICE sceneType: TRIGGER purposes: - TEAM - ORG_INTEGRATION

ownership: platform

capability: address: 0x0C category: ORG code: ORG_LDAP operations: [auth, org-sync, user-query]

runtime: language: java javaVersion: "8" framework: spring-boot mainClass: net.ooder.skill.org.ldap.LdapOrgApplication

llmConfig: required: false defaultProvider: "deepseek" defaultModel: "deepseek-chat" capabilities: - chat - streaming - function-calling modelSelection: allowUserOverride: true availableProviders: - deepseek - openai - qianwen - volcengine - ollama functionCalling: enabled: true tools: - name: query_skill_capability description: "查询当前技能的能力和使用方法" parameters: type: object properties: capability: type: string description: "能力名称" detail: type: string enum: [brief, detailed, examples] default: "brief" - name: execute_mvel_action description: "通过MVEL表达式执行后台操作" parameters: type: object properties: expression: type: string description: "MVEL表达式" context: type: object - name: generate_ui_form description: "生成UI表单供用户填写" parameters: type: object properties: formType: type: string fields: type: array items: type: object - name: execute_batch_operation description: "执行批量操作" parameters: type: object properties: operation: type: string items: type: array items: type: object - name: convert_to_javascript description: "转换为JavaScript代码供用户使用" parameters: type: object properties: action: type: string parameters: type: object toolChoice: auto rateLimits: requestsPerMinute: 60 tokensPerMinute: 100000

capabilities: - id: org-data-read name: Org Data Read description: 组织数据读取 category: organization - id: org-data-sync name: Org Data Sync description: 组织数据同步 category: organization - id: user-auth name: User Authentication description: 用户认证 category: authentication - id: department-query name: Department Query description: 部门查询 category: organization - id: user-query name: User Query description: 用户查询 category: organization

scenes: - name: auth description: 认证场景 capabilities: - org-data-read - org-data-sync - user-auth - department-query - user-query

dependencies: - id: skill-org-base version: ">=2.3.0" required: true description: "组织基础服务" - id: skill-user-auth version: ">=0.7.0" required: false description: "用户认证服务(间接)" - id: skill-common version: ">=1.0.0" required: false description: "通用工具类(间接)"

config: required: - name: LDAP_URL type: string description: LDAP服务器URL - name: LDAP_BASE_DN type: string description: LDAP基础DN - name: LDAP_USERNAME type: string description: LDAP管理员用户名 - name: LDAP_PASSWORD type: string secret: true description: LDAP管理员密码 optional: - name: LDAP_USER_SEARCH_BASE type: string description: 用户搜索基础DN - name: LDAP_GROUP_SEARCH_BASE type: string description: 组搜索基础DN

endpoints: - path: /api/org/departments method: GET description: 获取部门列表 capability: department-query - path: /api/org/users method: GET description: 获取用户列表 capability: user-query - path: /api/org/sync method: POST description: 同步组织数据 capability: org-data-sync - path: /api/auth/login method: POST description: 用户登录 capability: user-auth - path: /api/health method: GET description: 健康检查

resources: cpu: "200m" memory: "512Mi" storage: "100Mi"

offline: enabled: true cacheStrategy: local syncOnReconnect: true