From 7987c3d069ea6c2adb3c06d4bada0cef1121948b Mon Sep 17 00:00:00 2001 From: Robert Orr Date: Thu, 16 Oct 2025 11:12:14 -0700 Subject: Modify openldap.nix to get rid of tabs. First try at openldap configuration. also an initial ISL.ldif and some example ldif and a list of commands that work when run on the server itself. Also, some different example ldif files Change-Id: I0d702410fbf5a6aa4c626e4f1fc233bb72bad4e5 --- services/accounts/ldif/ISL.ldif | 48 ++++++++++++++++++++++++++ services/accounts/ldif/add2group.ldif | 5 +++ services/accounts/ldif/examples/ldap-root.ldif | 7 ++++ services/accounts/ldif/examples/modtest.ldif | 20 +++++++++++ 4 files changed, 80 insertions(+) create mode 100644 services/accounts/ldif/ISL.ldif create mode 100644 services/accounts/ldif/add2group.ldif create mode 100644 services/accounts/ldif/examples/ldap-root.ldif create mode 100644 services/accounts/ldif/examples/modtest.ldif (limited to 'services/accounts/ldif') diff --git a/services/accounts/ldif/ISL.ldif b/services/accounts/ldif/ISL.ldif new file mode 100644 index 0000000..0220904 --- /dev/null +++ b/services/accounts/ldif/ISL.ldif @@ -0,0 +1,48 @@ +# internetsafetylabs.org +dn: dc=internetsafetylabs,dc=org +objectClass: domain +dc: internetsafetylabs + +dn: ou=people,dc=internetsafetylabs,dc=org +objectClass: organizationalUnit +ou: people + +dn: ou=staff,ou=people,dc=internetsafetylabs,dc=org +objectClass: organizationalUnit +ou: staff + +dn: ou=contributors,ou=people,dc=internetsafetylabs,dc=org +objectClass: organizationalUnit +ou: contributors + +dn: ou=inspectors,ou=people,dc=internetsafetylabs,dc=org +objectClass: organizationalUnit +ou: inspectors + +dn: ou=groups,dc=internetsafetylabs,dc=org +objectClass: organizationalUnit +ou: groups + +dn: ou=services,dc=internetsafetylabs,dc=org +objectClass: organizationalUnit +ou: services + +# ------- + +dn: uid=irenes,ou=staff,ou=people,dc=internetsafetylabs,dc=org +objectClass: person +objectClass: organizationalPerson +objectClass: inetOrgPerson +cn: Irene Knapp +sn: Knapp +uid: irenes +mail: ireneista@internetsafetylabs.org + +dn: uid=rorr,ou=contributors,ou=people,dc=internetsafetylabs,dc=org +objectClass: person +objectClass: organizationalPerson +objectClass: inetOrgPerson +cn: Robert Orr +sn: Orr +uid: rorr +mail: robert@coffeezombie.com diff --git a/services/accounts/ldif/add2group.ldif b/services/accounts/ldif/add2group.ldif new file mode 100644 index 0000000..a087887 --- /dev/null +++ b/services/accounts/ldif/add2group.ldif @@ -0,0 +1,5 @@ +# add user to existing group = change uid=alice +dn: cn=admins,ou=groups,dc=example,dc=com +changetype: modify +add: member +member: uid=DUMMY,ou=people,dc=example,dc=com diff --git a/services/accounts/ldif/examples/ldap-root.ldif b/services/accounts/ldif/examples/ldap-root.ldif new file mode 100644 index 0000000..8c4cfb1 --- /dev/null +++ b/services/accounts/ldif/examples/ldap-root.ldif @@ -0,0 +1,7 @@ +dn: olcDatabase={1}mdb,cn=config +changetype: modify +replace: olcRootDN +olcRootDN: cn=admin,dc=internetsafetylabs,dc=org +- +replace: olcRootPW +olcRootPW: secret diff --git a/services/accounts/ldif/examples/modtest.ldif b/services/accounts/ldif/examples/modtest.ldif new file mode 100644 index 0000000..a5ac883 --- /dev/null +++ b/services/accounts/ldif/examples/modtest.ldif @@ -0,0 +1,20 @@ +dn: ou=Groups,dc=internetsafetylabs,dc=org +changetype: modify +replace: ou +ou: groups + +dn: ou=Groups,dc=internetsafetylabs,dc=org +changetype: modrdn +newrdn: ou=groups +deleteoldrdn: 0 + +dn: ou=People,dc=internetsafetylabs,dc=org +changetype: modify +replace: ou +ou: people + +dn: ou=People,dc=internetsafetylabs,dc=org +changetype: modrdn +newrdn: ou=people +deleteoldrdn: 0 + -- cgit 1.4.1