first commit

ldap/patchs/slapd.conf.patch

@@ -0,0 +1,35 @@
+--- distrib/slapd.conf	2017-11-14 15:48:53.000000000 +0100
++++ modif/slapd.conf	2018-03-26 17:01:41.136558718 +0200
+@@ -23,6 +23,8 @@
+ %elif %%ldap_schema == 'zephir'
+ include        /etc/ldap/schema/openldap.schema
+ %end if
++include        /etc/ldap/schema/cadoles.schema
++
+ 
+ ## Support du TLS
+ TLSCertificateFile      %%server_cert
+@@ -43,6 +45,9 @@
+ # Where the dynamically loaded modules are stored
+ modulepath      /usr/lib/ldap
+ moduleload      back_bdb
++# moduleload      dynlist
++moduleload      memberof
++
+ %if %%ldap_replication == 'oui' or %%ldap_replication_client == 'oui'
+ moduleload      syncprov
+ %end if
+@@ -96,6 +101,13 @@
+ # Mode 700 recommended.
+ directory    /var/lib/ldap
+ 
++#overlay                 dynlist
++#dynlist-attrset  cadolesPerson labeledURI cadolesMemberOf
++
++overlay memberof
++memberof-group-oc cadolesGroup
++memberof-member-ad cadolesMember
++
+ # Indices to maintain
+ index   objectClass         eq
+ index   uid,cn,sn           eq,subinitial

ldap/schema/cadoles.schema

@@ -0,0 +1,121 @@
+#-------------------------------------------------------------------------------
+#
+## schema Cadoles pour la Openid
+#
+#-------------------------------------------------------------------------------
+
+attributetype ( 2.16.840.1.113732.3.1.101
+	NAME 'givensName'
+	DESC 'Prénoms Agent'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.102
+	NAME 'usualname'
+	DESC 'Nom Usage'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.103
+	NAME 'birthdate'
+	DESC 'Date de Naissance'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.104
+	NAME 'birthcountry'
+	DESC 'Code INSEE Pays de Naissance'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.105
+	NAME 'birthplace'
+	DESC 'Code INSEE Lieu de Naissance'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.106
+	NAME 'gender'
+	DESC 'Sexe de la Personne'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.107
+	NAME 'job'
+	DESC 'Métier'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.108
+	NAME 'position'
+	DESC 'Fonction relative à Unité Organisationnelle'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.109
+	NAME 'belongingpopulation'
+	DESC 'Population Appartenance'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.110
+	NAME 'authlevel'
+	DESC 'Niveau Authentification Demandé'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.111
+	NAME 'siren'
+	DESC 'Identifiant Entreprise'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.112
+	NAME 'siret'
+	DESC 'Identifiant Etablissement'
+	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
+	SINGLE-VALUE )
+
+attributetype ( 2.16.840.1.113732.3.1.113 
+ NAME 'cadolesMember' 
+ DESC 'Membres du groupe' 
+ EQUALITY distinguishedNameMatch 
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
+
+objectclass (  2.16.840.1.113732.3.1.1
+  NAME 'cadolesPerson'
+  DESC 'Description Personne Cadoles'
+  SUP top AUXILIARY
+  MAY  ( givensName $
+		 usualname $
+		 birthdate $
+		 birthcountry $
+		 birthplace $
+		 gender $
+		 job $
+		 position $
+		 belongingpopulation $
+		 authlevel 
+  ) )
+
+objectclass (  2.16.840.1.113732.3.1.2
+  NAME 'cadolesSiren'
+  DESC 'Siren'
+  SUP top AUXILIARY
+  MAY  ( siren 
+  ) )  
+
+objectclass (  2.16.840.1.113732.3.1.3
+  NAME 'cadolesSiret'
+  DESC 'Siret'
+  SUP top AUXILIARY
+  MAY  ( siret $
+         postalAddress
+  ) )  
+
+objectclass (  2.16.840.1.113732.3.1.4
+  NAME 'cadolesGroup'
+  DESC 'Descirption Groupe Cadoles'
+  SUP top AUXILIARY
+  MAY  ( cadolesMember
+  ) )