fix(security): resolve Security-009,010,011 — LDAP connection timeout, design-doc correction, security-path test coverage; Security-008 deferred

2026-05-16 22:24:03 -04:00
parent a9bd017c88
commit 84a696b0e4
5 changed files with 160 additions and 10 deletions
--- a/docs/requirements/Component-Security.md
+++ b/docs/requirements/Component-Security.md
@@ -10,7 +10,7 @@ Central cluster. Sites do not have user-facing interfaces and do not perform ind

 ## Responsibilities

- Authenticate users against LDAP/Active Directory using Windows Integrated Authentication.
+- Authenticate users against LDAP/Active Directory using a direct LDAP/AD bind (username/password).
 - Map LDAP group memberships to system roles.
 - Enforce role-based access control on all API and UI operations.
 - Support site-scoped permissions for the Deployment role.