Implement LDAP credentials validation via HTTP API

See discussion rabbitmq#14244

Follow-up to rabbitmq#14414

Cherry-picked from 9a4cb9c and then
modified to move validation API endpoint to a separate plugin,
`rabbitmq_auth_backend_ldap_management`.

These changes will allow a user to make an HTTP API request to...

```
/api/ldap/validate/simple-bind
```

...with an appropriate JSON body, and the plugin will attempt a
connection to the specified LDAP server using the provided credentials.
This allows validation that a connection can be made to an LDAP server
from a RabbitMQ cluster environment.

Author: lukebakken

.github/workflows/test-make-tests.yaml

@@ -88,6 +88,7 @@ jobs:
           - rabbitmq_auth_backend_cache
           - rabbitmq_auth_backend_http
           - rabbitmq_auth_backend_ldap
+          - rabbitmq_auth_backend_ldap_management
           - rabbitmq_auth_backend_oauth2
           - rabbitmq_auth_mechanism_ssl
           - rabbitmq_aws

.github/workflows/test-make-type-check.yaml

@@ -29,6 +29,7 @@ jobs:
           - rabbitmq_auth_backend_cache
           - rabbitmq_auth_backend_http
           - rabbitmq_auth_backend_ldap
+          - rabbitmq_auth_backend_ldap_management
           - rabbitmq_auth_backend_oauth2
           - rabbitmq_auth_mechanism_ssl
           - rabbitmq_aws

.gitignore

@@ -39,6 +39,7 @@ elvis
 !/deps/rabbitmq_auth_backend_http/
 !/deps/rabbitmq_auth_backend_internal_loopback/
 !/deps/rabbitmq_auth_backend_ldap/
+!/deps/rabbitmq_auth_backend_ldap_management/
 !/deps/rabbitmq_auth_backend_oauth2/
 !/deps/rabbitmq_auth_mechanism_ssl/
 !/deps/rabbitmq_aws/

Makefile

@@ -524,6 +524,7 @@ TIER1_PLUGINS := \
 	   rabbitmq_auth_backend_http \
 	   rabbitmq_auth_backend_internal_loopback \
 	   rabbitmq_auth_backend_ldap \
+	   rabbitmq_auth_backend_ldap_management \
 	   rabbitmq_auth_backend_oauth2 \
 	   rabbitmq_auth_mechanism_ssl \
 	   rabbitmq_aws \

deps/rabbitmq_auth_backend_ldap/Makefile

@@ -35,7 +35,7 @@ define PROJECT_APP_EXTRA_KEYS
 endef
 
 LOCAL_DEPS = eldap public_key
-DEPS = rabbit_common rabbit rabbitmq_management
+DEPS = rabbit_common rabbit
 TEST_DEPS = ct_helper rabbitmq_ct_helpers rabbitmq_ct_client_helpers amqp_client
 dep_ct_helper = git https://github.com/extend/ct_helper.git master
 

deps/rabbitmq_auth_backend_ldap/test/system_SUITE.erl

@@ -0,0 +1 @@
+../../../rabbitmq_ct_helpers/tools/init-slapd.sh

deps/rabbitmq_auth_backend_ldap/test/system_SUITE_data/init-slapd.sh

@@ -0,0 +1 @@
+../../../rabbitmq_ct_helpers/tools/ldif

deps/rabbitmq_auth_backend_ldap/test/system_SUITE_data/init-slapd.sh

@@ -0,0 +1,15 @@
+PROJECT = rabbitmq_auth_backend_ldap_management
+PROJECT_DESCRIPTION = Management extension for the LDAP plugin
+
+define PROJECT_APP_EXTRA_KEYS
+	{broker_version_requirements, []}
+endef
+
+DEPS = rabbit_common rabbit rabbitmq_management rabbitmq_auth_backend_ldap
+TEST_DEPS = rabbitmq_ct_helpers rabbitmq_ct_client_helpers
+
+DEP_EARLY_PLUGINS = rabbit_common/mk/rabbitmq-early-plugin.mk
+DEP_PLUGINS = rabbit_common/mk/rabbitmq-plugin.mk
+
+include ../../rabbitmq-components.mk
+include ../../erlang.mk