Merge pull request #32 from christophert/add-ldaptlsinsecure

Add LDAPS Insecure option

diff --combined content/docs/admin/ldap-auth.md
index 1e867d7ce1bd9a2a37071747090bbc0824ce0edf,37232cdd6edbd7518960683cc4d9daf57d071336..54c399c0961c16a8065529a789de2743781734a5
--- 1/content/docs/admin/ldap-auth.md
--- 2/content/docs/admin/ldap-auth.md
+++ b/content/docs/admin/ldap-auth.md
@@@ -21,6 -21,8 +21,8 @@@ AUTH_METHOD=lda
  LDAP_SERVER=example.com:389
  # If using LDAP over SSL you should also define the protocol:
  # LDAP_SERVER=ldaps://example.com:636
+ # To allow untrusted LDAPS certificates, define the following:
+ # LDAP_TLS_INSECURE=true
  
  # The base DN from where users will be searched within.
  LDAP_BASE_DN=ou=People,dc=example,dc=com
@@@ -60,7 -62,7 +62,7 @@@ LDAP_VERSION=
  ### LDAP Group Sync
  
  BookStack has the ability to sync LDAP user groups with BookStack roles. By default this will match LDAP group names with the BookStack role display names with casing ignored.
 -This can be overridden by via the 'External Authentication IDs' field which can be seen when editing a role while LDAP authentication is enabled. If filled, names in this field will be used and the role name will be ignored. You can match on multiple names by separating them with a comma.
 +This can be overridden by via the 'External Authentication IDs' field which can be seen when editing a role while LDAP authentication is enabled. This field can be populated with common names (CNs) of accounts *or* groups. If filled, CNs in this field will be used and the role name will be ignored. You can match on multiple CNs by separating them with a comma.
  
  This feature requires the LDAP server to be able to provide user groups when queried. This is enabled by default on ActiveDirectory via the 'memberOf' attribute but other LDAP systems may need to be configured to enable such functionality. If using OpenLDAP you'll need to setup the memberof overlay.