forked from uwej711/cookbooks
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmetadata.rb
99 lines (80 loc) · 3.33 KB
/
metadata.rb
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
maintainer "Opscode, Inc."
maintainer_email "[email protected]"
license "Apache 2.0"
description "Configures a server to be an OpenLDAP master, replication slave or client for auth"
long_description IO.read(File.join(File.dirname(__FILE__), 'README.rdoc'))
version "0.9.2"
recipe "openldap", "Empty, use one of the other recipes"
recipe "openldap::auth", "Set up openldap for user authentication"
recipe "openldap::client", "Install openldap client packages"
recipe "openldap::server", "Set up openldap to be a slapd server"
%w{ ubuntu debian }.each do |os|
supports os
end
%w{ openssh nscd }.each do |cb|
depends cb
end
attribute "openldap/basedn",
:display_name => "OpenLDAP BaseDN",
:description => "BaseDN for the LDAP directory",
:default => "dc=domain,dc=com"
attribute "openldap/server",
:display_name => "OpenLDAP Server",
:description => "LDAP Server, used for URIs",
:default => "ldap.domain"
attribute "openldap/rootpw",
:display_name => "OpenLDAP Root Password",
:description => "Password for 'admin' root user, should be a SHA hash that OpenLDAP supports",
:default => "nil"
attribute "openldap/dir",
:display_name => "OpenLDAP Dir",
:description => "Main configuration directory for OpenLDAP",
:default => "/etc/ldap"
attribute "openldap/run_dir",
:display_name => "OpenLDAP Run Directory",
:description => "Run directory for LDAP server processes",
:default => "/var/run/slapd"
attribute "openldap/module_dir",
:display_name => "OpenLDAP Module Directory",
:description => "Location for OpenLDAP add-on modules",
:default => "/usr/lib/ldap"
attribute "openldap/ssl_dir",
:display_name => "OpenLDAP SSL Directory",
:description => "Location for LDAP SSL certificates",
:default => "openldap_dir/ssl"
attribute "openldap/cafile",
:display_name => "OpenLDAP CA File",
:description => "Location for CA certificate",
:default => "openldap_dir_ssl/ca.crt"
attribute "openldap/slapd_type",
:display_name => "OpenLDAP Slapd Type",
:description => "Whether the server is a master or slave",
:default => "nil"
attribute "openldap/slapd_master",
:display_name => "OpenLDP Slapd Master",
:description => "Search nodes for attribute slapd_type master, for slaves",
:default => "nil"
attribute "openldap/slapd_replpw",
:display_name => "OpenLDAP Slapd Replication Password",
:description => "Password for slaves to replicate from master",
:default => "nil"
attribute "openldap/slapd_rid",
:display_name => "OpenLDAP Slapd Replication ID",
:description => "Slave's ID, must be unique",
:default => "102"
attribute "openldap/auth_type",
:display_name => "OpenLDAP Auth Type",
:description => "Used in Apache configs, AuthBasicProvider",
:default => "openldap"
attribute "openldap/auth_binddn",
:display_name => "OpenLDAP Auth BindDN",
:description => "Used in auth_url and Apache configs, AuthBindDN",
:default => "ou=people,openldap_basedn"
attribute "openldap/auth_bindpw",
:display_name => "OpenLDAP Auth Bind Password",
:description => "Used in Apache configs, AuthBindPassword",
:default => "nil"
attribute "openldap/auth_url",
:display_name => "OpenLDAP Auth URL",
:description => "Used in Apache configs, AuthLDAPURL",
:default => "ldap://openldap_server/openldap_auth_binddn?uid?sub?(objectClass=*)"