Add new TODO; Add ldap example ldiffs

docs/PLANNING.md

@@ -9,6 +9,7 @@ Here I collect the proposed features, the order of the corresponding TODOs etc p
 * Security: Correct CSRF handling (Especially for logout, …)
 * Security: Correct LDAP escaping
 * Security: Disable iframe stuff
+* LDAP: Data synchronisation: Remove old database entries of users that no longer exists in the directory
 
 GET /				No session: Redirect to /user/login. Has session: Redirect to /user/overview
 
@@ -67,4 +68,4 @@ POST /connect/backchannel_logout
 3. oAuth 2
 4. OpenID Connect
 5. Admin
-6. Mailman integration
\ No newline at end of file
+6. Mailman integration

docs/ldap/README.md

+TODO Add example ldap config
+
+	dc=fsr-etit,dc=de
+
+First-time populating the database:
+
+	ldapadd -D "cn=root,dc=fsr-etit,dc=de" -W -f base.ldif
+
+Manually adding a user:
+
+	ldapadd -D "cn=root,dc=fsr-etit,dc=de" -W -f user.ldiff
+
+Computing the encrypted user password:
+
+	slappasswd

docs/ldap/base.ldiff

+# fsr-etit.de
+dn: dc=fsr-etit,dc=de
+dc: fsr-etit
+o: Fachschaftsrat Elektrotechnik/Informationstechnik
+objectClass: dcObject
+objectClass: organization
+
+# root user
+dn: cn=root,dc=fsr-etit,dc=de
+cn: root
+description: LDAP administrator
+objectClass: organizationalRole
+roleOccupant: dc=fsr-etit,dc=de
+
+# People, fsr-etit.de
+dn: ou=People,dc=fsr-etit,dc=de
+ou: People
+objectClass: top
+objectClass: organizationalUnit
+
+# Groups, fsr-etit.de
+dn: ou=Groups,dc=fsr-etit,dc=de
+ou: Groups
+objectClass: top
+objectClass: organizationalUnit
\ No newline at end of file

docs/ldap/user.ldiff

+dn: uid=leonard.techel,ou=People,dc=fsr-etit,dc=de
+objectClass: top
+objectClass: person
+objectClass: organizationalPerson
+objectClass: inetOrgPerson
+uid: leonard.techel
+cn: Leonard Techel
+sn: Techel
+displayName: Leonard Techel
+mail: leonard.techel@tuhh.de
+preferredLanguage: de
+userPassword: {SSHA}vZrqzkxUBhQ6h5h+mm92DKYUPbCZ5UvU