Moved the stupid hack somewhere more reasonable

2023-09-06 15:49:34 -07:00 · 2023-09-06 15:49:34 -07:00 · 83b85a7495
commit 83b85a7495
parent f5e5e263ef
1 changed files with 17 additions and 29 deletions
--- a/lib/fudo/ldap.nix
+++ b/lib/fudo/ldap.nix
@ -31,35 +31,23 @@ let
    else
      "/home/${user-opts.primary-group}/${username}";
-  userLdif = base: name: group-map: opts:
+  userLdif = base: name: group-map: opts: ''
-    let
+    dn: uid=${name},ou=members,${base}
-      # TODO: HORRIBLE HACK
+    uid: ${name}
-      domains = {
+    objectClass: account
-        fudo = "fudo.org";
+    objectClass: shadowAccount
-        selby = "selby.ca";
+    objectClass: posixAccount
-        informis = "informis.land";
+    cn: ${opts.common-name}
-      };
+    uidNumber: ${toString (opts.uid)}
-      email = if (opts.email != null) then
+    gidNumber: ${toString (getUserGidNumber opts group-map)}
-        opts.email
+    homeDirectory: ${mkHomeDir name opts}
-      else
+    description: ${opts.description}
-        "${name}@${domains."${opts.primary-group}"}";
+    shadowLastChange: 12230
-    in ''
+    shadowMax: 99999
-      dn: uid=${name},ou=members,${base}
+    shadowWarning: 7
-      uid: ${name}
+    userPassword: ${opts.ldap-hashed-passwd}
-      objectClass: account
+    mail: ${opts.email}
-      objectClass: shadowAccount
+  '';
      objectClass: posixAccount
      cn: ${opts.common-name}
      uidNumber: ${toString (opts.uid)}
      gidNumber: ${toString (getUserGidNumber opts group-map)}
      homeDirectory: ${mkHomeDir name opts}
      description: ${opts.description}
      shadowLastChange: 12230
      shadowMax: 99999
      shadowWarning: 7
      userPassword: ${opts.ldap-hashed-passwd}
      mail: ${email}
    '';
  systemUserLdif = base: name: opts: ''
    dn: cn=${name},${base}