Commit 1a72d198 authored by Leonard Techel's avatar Leonard Techel
Browse files

Add new TODO; Add ldap example ldiffs

parent b5ea65b9
......@@ -9,6 +9,7 @@ Here I collect the proposed features, the order of the corresponding TODOs etc p
* Security: Correct CSRF handling (Especially for logout, …)
* Security: Correct LDAP escaping
* Security: Disable iframe stuff
* LDAP: Data synchronisation: Remove old database entries of users that no longer exists in the directory
GET / No session: Redirect to /user/login. Has session: Redirect to /user/overview
......@@ -67,4 +68,4 @@ POST /connect/backchannel_logout
3. oAuth 2
4. OpenID Connect
5. Admin
6. Mailman integration
\ No newline at end of file
6. Mailman integration
TODO Add example ldap config
First-time populating the database:
ldapadd -D "cn=root,dc=fsr-etit,dc=de" -W -f base.ldif
Manually adding a user:
ldapadd -D "cn=root,dc=fsr-etit,dc=de" -W -f user.ldiff
Computing the encrypted user password:
dn: dc=fsr-etit,dc=de
dc: fsr-etit
o: Fachschaftsrat Elektrotechnik/Informationstechnik
objectClass: dcObject
objectClass: organization
# root user
dn: cn=root,dc=fsr-etit,dc=de
cn: root
description: LDAP administrator
objectClass: organizationalRole
roleOccupant: dc=fsr-etit,dc=de
# People,
dn: ou=People,dc=fsr-etit,dc=de
ou: People
objectClass: top
objectClass: organizationalUnit
# Groups,
dn: ou=Groups,dc=fsr-etit,dc=de
ou: Groups
objectClass: top
objectClass: organizationalUnit
\ No newline at end of file
dn: uid=leonard.techel,ou=People,dc=fsr-etit,dc=de
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetOrgPerson
uid: leonard.techel
cn: Leonard Techel
sn: Techel
displayName: Leonard Techel
preferredLanguage: de
userPassword: {SSHA}vZrqzkxUBhQ6h5h+mm92DKYUPbCZ5UvU
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment