Adding first ActiveDirectory support

Need to be fixed : admin user membership FIXME note added
2020-12-15 13:48:29 +01:00
parent 205ad30cfb
commit 5f5274025f
5 changed files with 623 additions and 35 deletions
--- a/tmpl/cadolesldap.ldif
+++ b/tmpl/cadolesldap.ldif
@ -1,66 +1,121 @@
 %import pyeole.ssha

-# Entrée 3: ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: ou=%%cadolesldap_organization,o=gouv,c=fr
+# Entrée 3: ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: organizationalUnit
 objectclass: top
 ou: %%cadolesldap_organization

-# Entrée 4: ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,o=gouv,c=fr
+# Entrée 4: ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: organizationalUnit
 objectclass: top
 ou: %%cadolesldap_niveau01branche

-# Entrée 5: cn=%%cadolesldap_niveau01name,ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: cn=%%cadolesldap_niveau01name,ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,o=gouv,c=fr
+# Entrée 5: cn=%%cadolesldap_niveau01name,ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: cn=%%cadolesldap_niveau01name,ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: posixGroup
 objectclass: top
+%if %%eole_module == "seth"
+objectclass: group
+%else
 objectclass: sambaGroupMapping
+%end if
 objectclass: cadolesGroup
 objectclass: cadolesSiren
 cn: %%cadolesldap_niveau01name
 gidnumber: 1
 memberuid: admin
-cadolesMember: uid=admin,ou=users,ou=%%cadolesldap_organization,o=gouv,c=fr
+%if %%eole_module != "seth"
+cadolesMember: uid=admin,ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%end if
+%if %%eole_module != "seth"
 sambagrouptype: 2
 sambasid: 1
+%end if
+%if not %%is_empty(%%cadolesldap_niveau01siren)
 siren: %%cadolesldap_niveau01siren
+%else
+siren: %%cadolesldap_niveau01name
+%end if

-# Entrée 6: ou=%%cadolesldap_niveau02branche,ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: ou=%%cadolesldap_niveau02branche,ou=%%cadolesldap_organization,o=gouv,c=fr
+# Entrée 6: ou=%%cadolesldap_niveau02branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: ou=%%cadolesldap_niveau02branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: organizationalUnit
 objectclass: top
-ou: %%%%cadolesldap_niveau02branche
+ou: %%cadolesldap_niveau02branche

-# Entrée 7: ou=groups,ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: ou=groups,ou=%%cadolesldap_organization,o=gouv,c=fr
+# Entrée 7: ou=groups,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: ou=groups,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: organizationalUnit
 objectclass: top
 ou: groups

-# Entrée 8: ou=users,ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: ou=users,ou=%%cadolesldap_organization,o=gouv,c=fr
+# Entrée 8: ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: organizationalUnit
 objectclass: top
 ou: users

-# Entrée 9: uid=admin,ou=users,ou=%%cadolesldap_organization,o=gouv,c=fr
-dn: uid=admin,ou=users,ou=%%cadolesldap_organization,o=gouv,c=fr
+%if %%eole_module == "seth"
+# Entrée 9: cn=admin,ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: cn=admin,ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%else
+# Entrée 9: uid=admin,ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+dn: uid=admin,ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%end if
+%if %%eole_module == "seth"
+changetype: add
+%end if
 objectclass: top
 objectclass: person
 objectclass: organizationalPerson
+%if %%eole_module == "seth"
+objectclass: user
+%end if
 objectclass: inetOrgPerson
 objectclass: cadolesPerson
 objectclass: cadolesSiren
 objectclass: cadolesSiret
 authlevel: simple
 uid: admin
-cn: %%cadolesldap_organization
+cn: admin
 sn: %%cadolesldap_organization
 displayname: Administrateur %%cadolesldap_organization
 givenname: Administrateur
+%if not %%is_empty(%%system_mail_to)
 mail: %%system_mail_to
+%end if
+%if not %%is_empty(%%cadolesldap_niveau01siren)
 siren: %%cadolesldap_niveau01siren
+%else
+siren: %%cadolesldap_niveau01name
+%end if
 niveau01: %%cadolesldap_niveau01name
 userpassword: %%pyeole.ssha.ssha_encode(%%cadolesldap_pwdadmin)
+
+%if %%eole_module == "seth"
+# FIXME CadolesMember ...
+# Entrée 9bis: cn=%%cadolesldap_niveau01name,ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+#dn: cn=%%cadolesldap_niveau01name,ou=%%cadolesldap_niveau01branche,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+#changetype: add
+#cadolesMember: cn=admin,ou=users,ou=%%cadolesldap_organization,%%cadolesldap_basedn
+%end if