Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
Apq
/
docker-openldap
peilaus alkaen https://github.com/osixia/docker-openldap.git
1
0
Haarauta 0
Tiedostot Esitykset 0 Wiki
Selaa lähdekoodia

Desabilita validação de permissões

Eduardo Santos 7 vuotta sitten
vanhempi
3596917e7f
sitoutus
7e53461525
2 muutettua tiedostoa jossa 13 lisäystä ja 9 poistoa
Jaettu näkymä Näytä diff tilastot
  1. 13 9
      image/service/slapd/startup.sh
  2. 0 0
      test/test_helper.bash

+ 13 - 9
image/service/slapd/startup.sh
Näytä tiedosto 

@@ -15,9 +15,10 @@ ulimit -n $LDAP_NOFILE
 
 [ -d /etc/ldap/slapd.d ] || mkdir -p /etc/ldap/slapd.d
 
 
 # fix file permissions
 
-chown -R openldap:openldap /var/lib/ldap
 
-chown -R openldap:openldap /etc/ldap
 
-chown -R openldap:openldap ${CONTAINER_SERVICE_DIR}/slapd
 
+if [ -z "$DISABLE_CHOWN" ]; then
 
+    chown -R openldap:openldap /var/lib/ldap
 
+    chown -R openldap:openldap /etc/ldap
 
+    chown -R openldap:openldap ${CONTAINER_SERVICE_DIR}/slapd
 
 
 FIRST_START_DONE="${CONTAINER_STATE_DIR}/slapd-first-start-done"
 
 WAS_STARTED_WITH_TLS="/etc/ldap/slapd.d/docker-openldap-was-started-with-tls"
 
@@ -125,7 +126,8 @@ EOF
 
       mv /tmp/schema/cn=config/cn=schema/* /etc/ldap/slapd.d/cn=config/cn=schema
 
       rm -r /tmp/schema
 
 
-      chown -R openldap:openldap /etc/ldap/slapd.d/cn=config/cn=schema
 
+      if [ -z "$DISABLE_CHOWN" ]; then
 
+        chown -R openldap:openldap /etc/ldap/slapd.d/cn=config/cn=schema
 
     fi
 
 
     rm ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/schema/rfc2307bis.*
 
@@ -202,8 +204,9 @@ EOF
 
       ssl-helper $LDAP_SSL_HELPER_PREFIX $PREVIOUS_LDAP_TLS_CRT_PATH $PREVIOUS_LDAP_TLS_KEY_PATH $PREVIOUS_LDAP_TLS_CA_CRT_PATH
 
       [ -f ${PREVIOUS_LDAP_TLS_DH_PARAM_PATH} ] || openssl dhparam -out ${LDAP_TLS_DH_PARAM_PATH} 2048
 
 
-      chmod 600 ${PREVIOUS_LDAP_TLS_DH_PARAM_PATH}
 
-      chown openldap:openldap $PREVIOUS_LDAP_TLS_CRT_PATH $PREVIOUS_LDAP_TLS_KEY_PATH $PREVIOUS_LDAP_TLS_CA_CRT_PATH $PREVIOUS_LDAP_TLS_DH_PARAM_PATH
 
+      if [ -z "$DISABLE_CHOWN" ]; then
 
+        chmod 600 ${PREVIOUS_LDAP_TLS_DH_PARAM_PATH}
 
+        chown openldap:openldap $PREVIOUS_LDAP_TLS_CRT_PATH $PREVIOUS_LDAP_TLS_KEY_PATH $PREVIOUS_LDAP_TLS_CA_CRT_PATH $PREVIOUS_LDAP_TLS_DH_PARAM_PATH
 
     fi
 
 
     # start OpenLDAP
 
@@ -306,10 +309,11 @@ EOF
 
 
       # create DHParamFile if not found
 
       [ -f ${LDAP_TLS_DH_PARAM_PATH} ] || openssl dhparam -out ${LDAP_TLS_DH_PARAM_PATH} 2048
 
-      chmod 600 ${LDAP_TLS_DH_PARAM_PATH}
 
-
 
+      
       # fix file permissions
 
-      chown -R openldap:openldap ${CONTAINER_SERVICE_DIR}/slapd
 
+      if [ -z "$DISABLE_CHOWN" ]; then
 
+        chmod 600 ${LDAP_TLS_DH_PARAM_PATH}
 
+        chown -R openldap:openldap ${CONTAINER_SERVICE_DIR}/slapd
 
 
       # adapt tls ldif
 
       sed -i "s|{{ LDAP_TLS_CA_CRT_PATH }}|${LDAP_TLS_CA_CRT_PATH}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif

+ 0 - 0
test/test_helper.bash
Näytä tiedosto