2018-03-02 15:44:00 +01:00
<?xml version="1.0" encoding="utf-8"?>
<creole >
2018-03-05 14:35:14 +01:00
<files >
2018-03-02 15:44:00 +01:00
<!-- Je suis un commentaire -->
2019-08-30 17:22:02 +02:00
<file filelist= 'lemonng' name= '/etc/lemonldap-ng/manager-nginx.conf' mkdir= 'True' rm= 'True' />
<file filelist= 'lemonng' name= '/etc/lemonldap-ng/handler-nginx.conf' mkdir= 'True' rm= 'True' />
<file filelist= 'lemonng' name= '/etc/lemonldap-ng/portal-nginx.conf' mkdir= 'True' rm= 'True' />
<file filelist= 'lemona2' name= '/etc/lemonldap-ng/manager-apache2.X.conf' mkdir= 'True' rm= 'True' />
<file filelist= 'lemona2' name= '/etc/lemonldap-ng/handler-apache2.X.conf' mkdir= 'True' rm= 'True' />
<file filelist= 'lemona2' name= '/etc/lemonldap-ng/portal-apache2.X.conf' mkdir= 'True' rm= 'True' />
2018-03-23 16:56:54 +01:00
<file filelist= 'lemon' name= '/etc/lemonldap-ng/lemonldap-ng.ini' mkdir= 'True' rm= 'True' />
2019-07-15 10:40:26 +02:00
<file filelist= 'lemon' name= '/var/lib/lemonldap-ng/conf/lmConf-1.json' mkdir= 'True' rm= 'True' />
2018-03-21 14:13:15 +01:00
<file filelist= 'lemonCAS' name= '/usr/share/php/configCAS/cas.inc.php' source= 'cas.inc.php.tmpl' mkdir= 'True' />
<file filelist= 'lemonCAS' name= '/usr/share/php/CAS/eoleCASConfig.php' source= 'eoleCASConfig.php.tmpl' mkdir= 'True' />
<file filelist= 'lemonCAS' name= '/etc/pam_cas.conf' source= "pam_cas_auth.conf" />
2019-08-30 17:22:02 +02:00
<service servicelist= 'llonnginx' > lemonldap-ng-fastcgi-server</service>
2018-03-02 15:44:00 +01:00
<service_access service= 'nginx' >
<port service_accesslist= "saLemon" > 80</port>
<port service_accesslist= "saLemon" > 443</port>
</service_access>
</files>
<variables >
<family name= 'Services' >
2018-03-05 14:35:14 +01:00
<variable name= 'activerLemon' type= 'oui/non' description= "Activer LemonLDAP::NG" >
2018-03-02 15:44:00 +01:00
<value > non</value>
</variable>
</family>
2018-03-05 14:35:14 +01:00
<family name= 'LemonLDAP' >
2018-03-02 15:44:00 +01:00
<variable name= 'managerWebName' type= 'string' description= "Nom DNS du manager LemonLDAP-NG" />
<variable name= 'authWebName' type= 'string' description= "Nom DNS du service d'authentification LemonLDAP-NG" />
2018-03-05 14:35:14 +01:00
<variable name= 'reloadWebName' type= 'string' description= "Nom DNS du service Reload de LemonLDAP-NG" mode= "expert" />
<variable name= 'ldapScheme' type= 'string' description= "Protocole LDAP à utiliser" mandatory= 'True' /> -->
<variable name= 'ldapServer' type= 'string' description= "Adresse du Serveur LDAP utilisé par LemonLDAP::NG" mandatory= "True" />
<variable name= 'ldapServerPort' type= 'number' description= "Port d'écoute du LDAP utilisé par LemonLDAP::NG" mandatory= 'True' />
<variable name= 'ldapUserBaseDN' type= 'string' description= "Base DN des utilisateurs dans l'annuaire" mandatory= 'True' />
<variable name= 'ldapBindUserDN' type= 'string' description= "Utilisateur de connection à l'annuaire" mandatory= "True" />
<variable name= 'ldapBindUserPassword' type= 'string' description= "Mot de passe de l'utilisateur de connection à l'annuaire" mandatory= "True" />
<variable name= "samlOrganizationName" type= 'string' description= "Nom de l'organisation SAML" mode= 'expert' />
2018-03-08 16:03:39 +01:00
<variable name= "lemonAdmin" type= 'string' description= "LemonLDAP Administrator username" mode= 'expert' >
<value > admin</value>
</variable>
2018-03-08 16:49:52 +01:00
<variable name= "nginxBucketSize" type= 'number' description= "Taille du hash des noms de serveur pour NGINX" mode= 'expert' >
<value > 64</value>
</variable>
2018-03-09 14:29:22 +01:00
<variable name= "casAttribute" description= "Nom de l'attribut CAS" type= "string" mode= "expert" multi= "True" />
<variable name= "casLDAPAttribute" description= "Attribut LDAP équivalent" type= "string" mode= "expert" />
2018-03-21 14:13:15 +01:00
<variable name= "casFolder" description= "Endpoint du service cas" type= "string" mode= "expert" >
<value > cas</value>
</variable>
<variable name= 'cas_send_logout' type= 'oui/non' description= "Activer le logout centralisé du serveur SSO" hidden= 'True' >
<value > oui</value>
</variable>
<variable name= 'ssoCALocation' type= 'string' description= "Chemin de l'autorité de certification (ou rien)" mode= "expert" />
<variable name= 'ssoDebug' type= 'string' description= "Activer le Debug pour la lib php-CAS" mode= "expert" >
<value > non</value>
</variable>
2018-03-26 09:56:38 +02:00
<variable name= 'llSkin' type= 'string' description= "Skin utilisé par LemonLDAP::NG" >
<value > bootstrap</value>
</variable>
2018-03-23 16:13:40 +01:00
<variable name= 'llCheckLogins' type= 'oui/non' description= "Permettre aux utilisateurs d'afficher l'historique de connection" >
<value > non</value>
</variable>
<variable name= 'llResetPassword' type= 'oui/non' description= "Permettre aux utilisateurs de réinitialiser leurs mots de passe" >
<value > oui</value>
</variable>
2018-09-13 14:35:15 +02:00
<variable name= 'llResetUrl' type= 'string' description= "Adresse de l'application pour réinitialiser leurs mots de passe" />
2018-03-23 16:13:40 +01:00
<variable name= 'llRegisterAccount' type= 'oui/non' description= "Permettre aux utilisateurs de créer un compte" >
<value > oui</value>
</variable>
<variable name= 'llRegisterDB' type= 'string' description= "Base de comptes pour l'enregistrement" />
<variable name= 'llRegisterURL' type= 'string' description= "Adresse de l'application de création de compte" />
2018-03-02 15:44:00 +01:00
</family>
2018-03-05 14:35:14 +01:00
<separators >
<separator name= "managerWebName" > Configuration DNS</separator>
<separator name= "ldapScheme" > Configuration LDAP</separator>
2018-03-09 14:29:22 +01:00
<separator name= "casAttribute" > Configuration CAS</separator>
2018-03-26 09:56:38 +02:00
<separator name= "llSkin" > Personnalisation de la mire SSO</separator>
2018-03-05 14:35:14 +01:00
</separators>
2018-03-02 15:44:00 +01:00
</variables>
<constraints >
2019-08-30 17:22:02 +02:00
<condition name= 'disabled_if_in' source= 'activer_nginx_web' >
<param > non</param>
<target type= 'filelist' > lemonng</target>
</condition>
<condition name= 'disabled_if_in' source= 'activer_apache' >
<param > non</param>
<target type= 'filelist' > lemona2</target>
</condition>
2018-03-02 15:44:00 +01:00
<fill name= 'concat' target= 'managerWebName' >
2018-03-05 14:35:14 +01:00
<param > manager.</param>
<param type= 'eole' > nom_domaine_local</param>
</fill>
<fill name= 'concat' target= 'authWebName' >
<param > auth.</param>
<param type= 'eole' > nom_domaine_local</param>
</fill>
<fill name= 'concat' target= 'reloadWebName' >
<param > reload.</param>
<param type= 'eole' > nom_domaine_local</param>
</fill>
<fill name= 'concat' target= 'samlOrganizationName' >
<param > SAML</param>
2018-03-02 15:44:00 +01:00
<param type= 'eole' > nom_domaine_local</param>
</fill>
2018-03-05 14:35:14 +01:00
<check name= "valid_enum" target= "ldapScheme" >
<param > ['ldaps','ldap']</param>
2018-03-23 16:13:40 +01:00
</check>
<check name= "valid_enum" target= "llRegisterDB" >
<param > ['LDAP','Demo','Custom']</param>
2018-03-05 14:35:14 +01:00
</check>
2018-03-09 14:29:22 +01:00
<group master= "casAttribute" >
<slave > casLDAPAttribute</slave>
</group>
2018-03-02 15:44:00 +01:00
<condition name= 'disabled_if_in' source= 'activerLemon' >
<param > non</param>
2019-08-30 17:22:02 +02:00
<target type= 'filelist' > lemonng</target>
<target type= 'filelist' > lemona2</target>
2018-03-21 14:13:15 +01:00
<target type= 'filelist' > lemonCAS</target>
2018-03-05 14:35:14 +01:00
<target type= 'family' > LemonLDAP</target>
2018-03-02 15:44:00 +01:00
<target type= 'service_accesslist' > saLemon</target>
</condition>
2018-03-23 16:13:40 +01:00
<condition name= 'disabled_if_in' source= 'llRegisterAccount' >
<param > non</param>
<target type= 'variable' > llRegisterDB</target>
</condition>
<condition name= 'disabled_if_not_in' source= 'llRegisterDB' >
<param > Custom</param>
<target type= 'variable' > llRegisterURL</target>
</condition>
2018-09-13 14:35:15 +02:00
<condition name= 'disabled_if_in' source= 'llResetPassword' >
<param > non</param>
<target type= 'variable' > llResetUrl</target>
</condition>
2018-03-23 16:22:02 +01:00
<check name= 'valid_enum' target= 'llSkin' >
<param > ['bootstrap','dark','impact','pastel']</param>
<param name= "checkval" > False</param>
2018-03-26 09:56:38 +02:00
</check>
2018-03-02 15:44:00 +01:00
</constraints>
<help >
2018-03-05 14:35:14 +01:00
<variable name= 'activerLemon' > Activer l'hébergement d'une place de marché HTTP pour OpenNebula</variable>
<variable name= 'managerWebName' > Nom DNS de l'application de gestion de LemonLDAP::NG ex:manager.cadoles.com</variable>
<variable name= 'authWebName' > Nom DNS de service d'authentification de LemonLDAP::NG ex:auth.cadoles.com</variable>
2018-03-19 14:35:00 +01:00
<variable name= 'ldapUserBaseDN' > DN de l'utilisateur de connection en lecture à l'annuaire (ex: cn=reader,o=gouv,c=fr)</variable>
2018-03-08 16:49:52 +01:00
<variable name= 'nginxBucketSize' > server_names_hash_bucket_size Taille du hash des noms de serveur pour NGINX</variable>
2018-03-23 16:13:40 +01:00
<variable name= 'llCheckLogins' > Affiche une case à cocher sur la mire SSO qui permet a l'utilisateur de voir l'historique de connection de son compte avant d'être redirigé vers le service demandé</variable>
2018-03-02 15:44:00 +01:00
</help>
</creole>