Главная Обзор Помощь
Вход
Apq
/
docker-openldap
зеркало из https://github.com/osixia/docker-openldap.git
1
0
Ответвить 0
Файлы Задачи 0 Вики
Просмотр исходного кода

fixes #167 LDAP_ADMIN_PASSWORD with space breaks container setup

Bertrand Gouny 8 лет назад
Родитель
559f89f39e
Сommit
d2691aa4f6
3 измененных файлов с 16 добавлено и 7 удалено
Разделённый вид Показать статистику Diff
  1. 11 2
      CHANGELOG.md
  2. 2 2
      image/environment/default.startup.yaml
  3. 3 3
      image/service/slapd/startup.sh

+ 11 - 2
CHANGELOG.md
Просмотреть файл 

@@ -1,7 +1,16 @@
 
 # Changelog
 
+All notable changes to this project will be documented in this file.
 
 
-## 1.2.0
 
-  - Use mdb as default backend (set environment variable LDAP_BACKEND="hdb" to use previous databases)
 
+The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/)
 
+and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
 
+
 
+## [1.2.0] - Unreleased
 
+### Changed
 
+  - Use mdb as default backend
 
+
 
+### Fixed
 
+  - startup.sh: Ensure SCHEMAS is sorted #193
 
+  - LDAP_ADMIN_PASSWORD with space breaks container setup #167
 
 
 ## 1.1.11
 
   - Add krb5-kdc-ldap with doc examples #171

+ 2 - 2
image/environment/default.startup.yaml
Просмотреть файл 

@@ -41,8 +41,8 @@ LDAP_REPLICATION: false
 
 # if you want to add replication to an existing ldap
 
 # adapt LDAP_REPLICATION_CONFIG_SYNCPROV and LDAP_REPLICATION_DB_SYNCPROV to your configuration
 
 # avoid using $LDAP_BASE_DN, $LDAP_ADMIN_PASSWORD and $LDAP_CONFIG_PASSWORD variables
 
-LDAP_REPLICATION_CONFIG_SYNCPROV: binddn="cn=admin,cn=config" bindmethod=simple credentials=$LDAP_CONFIG_PASSWORD searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1 starttls=critical
 
-LDAP_REPLICATION_DB_SYNCPROV: binddn="cn=admin,$LDAP_BASE_DN" bindmethod=simple credentials=$LDAP_ADMIN_PASSWORD searchbase="$LDAP_BASE_DN" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1 starttls=critical
 
+LDAP_REPLICATION_CONFIG_SYNCPROV: binddn="cn=admin,cn=config" bindmethod=simple credentials="$LDAP_CONFIG_PASSWORD" searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1 starttls=critical
 
+LDAP_REPLICATION_DB_SYNCPROV: binddn="cn=admin,$LDAP_BASE_DN" bindmethod=simple credentials="$LDAP_ADMIN_PASSWORD" searchbase="$LDAP_BASE_DN" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1 starttls=critical
 
 LDAP_REPLICATION_HOSTS:
 
   - ldap://ldap.example.org # The order must be the same on all ldap servers
 
   - ldap://ldap2.example.org

+ 3 - 3
image/service/slapd/startup.sh
Просмотреть файл 

@@ -72,9 +72,9 @@ if [ ! -e "$FIRST_START_DONE" ]; then
 
       sed -i "s|{{ LDAP_READONLY_USER_PASSWORD_ENCRYPTED }}|${LDAP_READONLY_USER_PASSWORD_ENCRYPTED}|g" $LDIF_FILE
 
     fi
 
     if grep -iq changetype $LDIF_FILE ; then
 
-        ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f $LDIF_FILE 2>&1 | log-helper debug || ldapmodify -h localhost -p 389 -D cn=admin,$LDAP_BASE_DN -w $LDAP_ADMIN_PASSWORD -f $LDIF_FILE 2>&1 | log-helper debug
 
+        ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f $LDIF_FILE 2>&1 | log-helper debug || ldapmodify -h localhost -p 389 -D cn=admin,$LDAP_BASE_DN -w "$LDAP_ADMIN_PASSWORD" -f $LDIF_FILE 2>&1 | log-helper debug
 
     else
 
-        ldapadd -Y EXTERNAL -Q -H ldapi:/// -f $LDIF_FILE |& log-helper debug || ldapadd -h localhost -p 389 -D cn=admin,$LDAP_BASE_DN -w $LDAP_ADMIN_PASSWORD -f $LDIF_FILE 2>&1 | log-helper debug
 
+        ldapadd -Y EXTERNAL -Q -H ldapi:/// -f $LDIF_FILE |& log-helper debug || ldapadd -h localhost -p 389 -D cn=admin,$LDAP_BASE_DN -w "$LDAP_ADMIN_PASSWORD" -f $LDIF_FILE 2>&1 | log-helper debug
 
     fi
 
   }
 
 
@@ -250,7 +250,7 @@ EOF
 
       done
 
 
       # set config password
 
-      LDAP_CONFIG_PASSWORD_ENCRYPTED=$(slappasswd -s $LDAP_CONFIG_PASSWORD)
 
+      LDAP_CONFIG_PASSWORD_ENCRYPTED=$(slappasswd -s "$LDAP_CONFIG_PASSWORD")
 
       sed -i "s|{{ LDAP_CONFIG_PASSWORD_ENCRYPTED }}|${LDAP_CONFIG_PASSWORD_ENCRYPTED}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/01-config-password.ldif
 
 
       # adapt security config file