public
/
nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nixos/openldap: migrate sssd-ldap to new settings

This commit is contained in:
Kai Wohlfahrt 2020-09-27 23:23:31 +01:00
parent db5bb4e26b
commit c96f18feee
2 changed files with 26 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
nixos/tests/openldap.nix
View File

@ -26,14 +26,12 @@ in {
enable = true; enable = true;
settings = { settings = {
children = { children = {
"cn=schema" = { "cn=schema".includes = [
includes = [ "${pkgs.openldap}/etc/schema/core.ldif"
"${pkgs.openldap}/etc/schema/core.ldif" "${pkgs.openldap}/etc/schema/cosine.ldif"
"${pkgs.openldap}/etc/schema/cosine.ldif" "${pkgs.openldap}/etc/schema/inetorgperson.ldif"
"${pkgs.openldap}/etc/schema/inetorgperson.ldif" "${pkgs.openldap}/etc/schema/nis.ldif"
"${pkgs.openldap}/etc/schema/nis.ldif" ];
];
};
"olcDatabase={1}mdb" = { "olcDatabase={1}mdb" = {
# This tests string, base64 and path values, as well as lists of string values # This tests string, base64 and path values, as well as lists of string values
attrs = { attrs = {

24
nixos/tests/sssd-ldap.nix
View File

@ -17,10 +17,26 @@
machine = { pkgs, ... }: { machine = { pkgs, ... }: {
services.openldap = { services.openldap = {
enable = true; enable = true;
database = "mdb"; settings = {
rootdn = "cn=${ldapRootUser},${dbSuffix}"; children = {
rootpw = ldapRootPassword; "cn=schema".includes = [
suffix = dbSuffix; "${pkgs.openldap}/etc/schema/core.ldif"
"${pkgs.openldap}/etc/schema/cosine.ldif"
"${pkgs.openldap}/etc/schema/inetorgperson.ldif"
"${pkgs.openldap}/etc/schema/nis.ldif"
];
"olcDatabase={1}mdb" = {
attrs = {
objectClass = [ "olcDatabaseConfig" "olcMdbConfig" ];
olcDatabase = "{1}mdb";
olcDbDirectory = "/var/db/openldap";
olcSuffix = dbSuffix;
olcRootDN = "cn=${ldapRootUser},${dbSuffix}";
olcRootPW = ldapRootPassword;
};
};
};
};
declarativeContents = { declarativeContents = {
${dbSuffix} = '' ${dbSuffix} = ''
dn: ${dbSuffix} dn: ${dbSuffix}