A terminal-based LDAP server explorer built with Go and BubbleTea, providing an interactive interface for browsing LDAP directory trees, viewing records, and executing custom queries.

• 🌲 Interactive Tree Navigation: Browse LDAP directory structure with keyboard/mouse
• 📄 Record Viewer: View detailed LDAP entry attributes
• 📋 Clipboard Integration: Copy attribute values to system clipboard
• 🔍 Custom Query Interface: Execute custom LDAP queries with real-time results
• 📖 Paginated Results: Efficient pagination for large result sets with automatic loading
• ⚙️ Flexible Configuration: Support for config files and command-line options
• 🔐 Secure Authentication: Support for SSL/TLS and various authentication methods
• 🔄 Auto-Update Notifications: Optional checking for newer releases from GitHub
• 🎨 Modern TUI: Clean, intuitive interface built with BubbleTea
• 🔀 Multiple Connections: Save and switch between multiple LDAP server configurations

Initial startup screen with connection options

_Interface for adding new LDAP Connections

Browse LDAP directory structure with keyboard/mouse navigation

View detailed LDAP entry attributes with clipboard integration

Execute custom LDAP queries with real-time results and formatting

brew install moribito

yay -S moribito

yay -S moribito-git

PKGBUILDS are available here:

• https://aur.archlinux.org/packages/moribito
• https://aur.archlinux.org/packages/moribito-git

Download the latest pre-built binary from GitHub Releases:

Linux/Unix:

curl -sSL https://raw.githubusercontent.com/ericschmar/moribito/main/scripts/install.sh | bash

macOS:

curl -sSL https://raw.githubusercontent.com/ericschmar/moribito/main/scripts/install-macos.sh | bash

Windows (PowerShell):

irm https://raw.githubusercontent.com/ericschmar/moribito/main/scripts/install.ps1 | iex

The install scripts will:

• Download the appropriate binary for your platform
• Install it to the system PATH
• Create OS-specific configuration directories
• Generate sample configuration files

# Linux x86_64
curl -L https://github.com/ericschmar/moribito/releases/latest/download/moribito-linux-amd64 -o moribito
chmod +x moribito
sudo mv moribito /usr/local/bin/

# Linux ARM64
curl -L https://github.com/ericschmar/moribito/releases/latest/download/moribito-linux-arm64 -o moribito
chmod +x moribito
sudo mv moribito /usr/local/bin/

# macOS Intel
curl -L https://github.com/ericschmar/moribito/releases/latest/download/moribito-darwin-amd64 -o moribito
chmod +x moribito
sudo mv moribito /usr/local/bin/

# macOS Apple Silicon
curl -L https://github.com/ericschmar/moribito/releases/latest/download/moribito-darwin-arm64 -o moribito
chmod +x moribito
sudo mv moribito /usr/local/bin/

For Windows, download moribito-windows-amd64.exe from the releases page.

Note: Homebrew is also available for Windows via WSL (Windows Subsystem for Linux). If you have WSL installed, you can use the Homebrew installation method above.

git clone https://github.com/ericschmar/moribito
cd moribito
go build -o moribito cmd/moribito/main.go

# Connect with command line options
moribito -host ldap.example.com -base-dn "dc=example,dc=com" -user "cn=admin,dc=example,dc=com"

# Enable automatic update checking
moribito -check-updates -host ldap.example.com -base-dn "dc=example,dc=com"

# Use a configuration file
moribito -config /path/to/config.yaml

# Get help
moribito -help

Moribito will automatically look for configuration files in OS-specific locations:

Linux/Unix:

• ~/.config/moribito/config.yaml (XDG config directory)
• ~/.moribito/config.yaml (user directory)
• ~/.moribito.yaml (user home file)

macOS:

• ~/.moribito/config.yaml (user directory)
• ~/Library/Application Support/moribito/config.yaml (macOS standard)
• ~/.moribito.yaml (user home file)

Windows:

• %APPDATA%\moribito\config.yaml (Windows standard)
• %USERPROFILE%\.moribito.yaml (user home file)

All platforms also check:

• ./config.yaml (current directory)

Use the built-in command to create a configuration file:

moribito --create-config

Or manually create a configuration file:

ldap:
    host: "ldap.example.com"
    port: 389
    base_dn: "dc=example,dc=com"
    use_ssl: false
    use_tls: false
    bind_user: "cn=admin,dc=example,dc=com"
    bind_pass: "your-password"
pagination:
    page_size: 50 # Number of entries per page
retry:
    enabled: true # Connection retries (default: true)
    max_attempts: 3 # Retry attempts (default: 3)
    initial_delay_ms: 500 # Initial delay (default: 500)
    max_delay_ms: 5000 # Max delay cap (default: 5000)

• Tab - Switch between views (Tree → Record → Query → Tree)
• 1/2/3 - Jump directly to Tree/Record/Query view
• q - Quit application

• ↑/↓ or k/j - Navigate up/down
• Page Up/Down - Navigate by page
• Home/End - Jump to top/bottom
• → or l - Expand node (load children)
• ← or h - Collapse node
• Enter - View record details

• ↑/↓ or k/j - Scroll up/down
• Page Up/Down - Scroll by page
• Home/End - Jump to top/bottom
• c - Copy current attribute value to clipboard

• / or Escape - Focus query input
• Ctrl+Enter or Ctrl+J - Execute query
• Ctrl+F - Format query with proper indentation
• Escape - Clear query
• Ctrl+V - Paste from clipboard
• ↑/↓ - Navigate results (when not in input mode)
• Page Up/Down - Navigate by page (automatically loads more results)
• Enter - View selected record

Note: The Query View uses automatic pagination to efficiently handle large result sets. When you scroll near the end of loaded results, the next page is automatically fetched from the LDAP server.

The Ctrl+F key combination formats complex LDAP queries with proper indentation for better readability:

# Before formatting:
(&(objectClass=person)(|(cn=john*)(sn=smith*))(department=engineering))

# After formatting (Ctrl+F):
(&
  (objectClass=person)
  (|
    (cn=john*)
    (sn=smith*)
  )
  (department=engineering)
)

The tool supports various LDAP authentication methods:

bind_user: "cn=admin,dc=example,dc=com"
bind_pass: "password"

bind_user: "uid=john,ou=users,dc=example,dc=com"
bind_pass: "password"

bind_user: "john@example.com"
bind_pass: "password"

# Leave bind_user and bind_pass empty or omit them

ldap:
    host: "ldaps.example.com"
    port: 636
    use_ssl: true

ldap:
    host: "ldap.example.com"
    port: 389
    use_tls: true

In the Query view, you can execute custom LDAP filters:

• (objectClass=*) - All objects
• (objectClass=person) - All person objects
• (cn=john*) - Objects with cn starting with "john"
• (&(objectClass=person)(mail=*@example.com)) - People with example.com emails
• (|(cn=admin)(uid=admin)) - Objects with cn=admin OR uid=admin

For complex nested queries, use Ctrl+F to automatically format them for better readability:

Simple queries remain unchanged:

(objectClass=person)

Complex queries are formatted with proper indentation:

# Original
(&(objectClass=person)(|(cn=john*)(sn=smith*))(department=engineering))

# After Ctrl+F
(&
  (objectClass=person)
  (|
    (cn=john*)
    (sn=smith*)
  )
  (department=engineering)
)

LDAP CLI uses intelligent pagination to provide optimal performance when working with large directories:

• Default Page Size: 50 entries per page
• Configurable: Adjust via config file or --page-size flag
• On-Demand Loading: Next pages load automatically as you scroll
• Memory Efficient: Only loaded entries are kept in memory

# Command line override
moribito --page-size 100 --host ldap.example.com

# Configuration file
pagination:
  page_size: 25  # Smaller pages for slower networks

• Smaller page sizes (10-25) for slower networks or limited LDAP servers
• Larger page sizes (100-200) for fast networks and powerful LDAP servers
• Use specific queries to reduce result sets instead of browsing all entries

LDAP CLI includes automatic retry functionality to handle connection failures gracefully:

• Default: Enabled with 3 retry attempts
• Exponential Backoff: Delay doubles between attempts (500ms → 1s → 2s → ...)
• Connection Recovery: Automatically re-establishes broken connections
• Smart Detection: Only retries connection-related errors, not authentication failures

# Default retry settings (automatically applied)
# No configuration needed - retries work out of the box

# Custom retry configuration
retry:
    enabled: true
    max_attempts: 5 # Maximum retry attempts (default: 3)
    initial_delay_ms: 1000 # Initial delay in milliseconds (default: 500)
    max_delay_ms: 10000 # Maximum delay cap (default: 5000)

# Disable retries if needed
retry:
    enabled: false

The system automatically retries for:

• Network timeouts and connection drops
• Connection refused errors
• Server unavailable responses
• Connection reset by peer
• LDAP server down errors

Authentication errors, invalid queries, and permission issues are not retried.

# Build for current platform
make build

# Build for all platforms
make build-all

# Clean build artifacts
make clean

# Format code
make fmt

# Run linter
make lint

# Run tests
make test

# Run all CI checks (format, lint, test, build)
make ci

go test ./...

This project uses GitHub Actions for CI/CD:

• CI Workflow: Runs on every push and pull request to main and develop branches

  • Code formatting verification
  • Linting (with warnings)
  • Testing
  • Building for current platform
  • Multi-platform build artifacts (on main branch pushes)

• Release Workflow: Triggered by version tags (e.g., v1.0.0)

  • Runs full CI checks
  • Builds for all platforms (Linux amd64/arm64, macOS amd64/arm64, Windows amd64)
  • Creates GitHub releases with binaries and checksums
  • Generates installation instructions

• BubbleTea - TUI framework
• Lipgloss - Styling
• go-ldap - LDAP client
• golang.org/x/term - Terminal utilities

This project includes full Homebrew support for easy installation on macOS and Linux. See the homebrew/ directory for:

• Ready-to-use Homebrew formula
• Formula generation and maintenance scripts
• Documentation for creating custom taps
• Instructions for submitting to homebrew-core

This project follows Semantic Versioning. See docs/versioning.md for details on the release process.

Comprehensive documentation is available using DocPress. To build and view the documentation:

# Build static documentation website
make docs

# Serve documentation locally with live reload
make docs-serve

The documentation covers:

• Installation and setup
• Usage guide with examples
• Interface navigation
• Development setup
• Contributing guidelines
• API reference and advanced features

Visit the generated documentation site for the complete guide.

1. Fork the repository
2. Create your feature branch (git checkout -b feature/amazing-feature)
3. Commit your changes (git commit -m 'Add some amazing feature')
4. Push to the branch (git push origin feature/amazing-feature)
5. Open a Pull Request

This project is licensed under the MIT License - see the LICENSE file for details.