Compare commits
30 Commits
21a8bc8b91
...
pkg/stable
| Author | SHA1 | Date | |
|---|---|---|---|
| 28af340a58 | |||
| 52e5c433eb | |||
| 55a6529380 | |||
| d1ad6aeb25 | |||
| b6cf7bb9e3 | |||
| ed37cb6666 | |||
| 815fca0e82 | |||
| 8ec486eafc | |||
| 4af11f3d28 | |||
| 8af3ee655f | |||
| 774d06913b | |||
| 5d4e572967 | |||
| 15da7394f3 | |||
| 536da57382 | |||
| 7912544665 | |||
| e348aa7381 | |||
| 66c57c702b | |||
| 6aa8c6ceff | |||
| dfeb49f3d6 | |||
| 5ccad1d1f7 | |||
| 36fe95a0ca | |||
| 2c8a46ab16 | |||
| 7ea9061878 | |||
| 027d549e18 | |||
| 0fda6b9e59 | |||
| 48c524c555 | |||
| f5c5681d5e | |||
| 24d49c49e3 | |||
| e5b6b94f7c | |||
| 578090525e |
2
debian/control
vendored
2
debian/control
vendored
@ -10,7 +10,7 @@ Vcs-Browser: https://forge.cadoles.com/Cadoles/eole-lemonldap
|
|||||||
|
|
||||||
Package: eole-lemonldap
|
Package: eole-lemonldap
|
||||||
Architecture: all
|
Architecture: all
|
||||||
Depends: ${misc:Depends}, eole-lemonldap-pkg
|
Depends: ${misc:Depends}, eole-client-annuaire, python-configparser, eole-lemonldap-pkg
|
||||||
Conflicts: eole-sso
|
Conflicts: eole-sso
|
||||||
Provides: eole-sso
|
Provides: eole-sso
|
||||||
Description: Dictionnaires et templates pour la configuration d'un serveur LemonLDAP::NG, testée uniquement avec eolebase
|
Description: Dictionnaires et templates pour la configuration d'un serveur LemonLDAP::NG, testée uniquement avec eolebase
|
||||||
|
|||||||
@ -51,6 +51,10 @@
|
|||||||
<value>4</value>
|
<value>4</value>
|
||||||
</variable>
|
</variable>
|
||||||
|
|
||||||
|
<variable name="lm_loglevel" type='string' description="Verbosité des journaux" mode='expert'>
|
||||||
|
<value>info</value>
|
||||||
|
</variable>
|
||||||
|
|
||||||
<variable name="lemonAdmin" type='string' description="LemonLDAP Administrator username" mode='expert'>
|
<variable name="lemonAdmin" type='string' description="LemonLDAP Administrator username" mode='expert'>
|
||||||
<value>admin</value>
|
<value>admin</value>
|
||||||
</variable>
|
</variable>
|
||||||
@ -80,6 +84,9 @@
|
|||||||
<variable name='llRegisterAccount' type='oui/non' description="Permettre aux utilisateurs de créer un compte">
|
<variable name='llRegisterAccount' type='oui/non' description="Permettre aux utilisateurs de créer un compte">
|
||||||
<value>oui</value>
|
<value>oui</value>
|
||||||
</variable>
|
</variable>
|
||||||
|
<variable name='lmldapverify' type='oui/non' description="Vérifier les certificats SSL du serveur LDAP">
|
||||||
|
<value>oui</value>
|
||||||
|
</variable>
|
||||||
<variable name='llRegisterDB' type='string' description="Base de comptes pour l'enregistrement"/>
|
<variable name='llRegisterDB' type='string' description="Base de comptes pour l'enregistrement"/>
|
||||||
<variable name='llRegisterURL' type='string' description="Adresse de l'application de création de compte"/>
|
<variable name='llRegisterURL' type='string' description="Adresse de l'application de création de compte"/>
|
||||||
<variable name='llCSPTargets' type='domain' description="Domaines vers lesquels le forumaire peut renvoyer" multi='True'/>
|
<variable name='llCSPTargets' type='domain' description="Domaines vers lesquels le forumaire peut renvoyer" multi='True'/>
|
||||||
@ -117,6 +124,10 @@
|
|||||||
<param>['ldaps','ldap']</param>
|
<param>['ldaps','ldap']</param>
|
||||||
</check>
|
</check>
|
||||||
|
|
||||||
|
<check name='valid_enum' target="lm_loglevel">
|
||||||
|
<param>['info','notice','warn','error','debug']</param>
|
||||||
|
</check>
|
||||||
|
|
||||||
<check name="valid_enum" target="llRegisterDB">
|
<check name="valid_enum" target="llRegisterDB">
|
||||||
<param>['LDAP','Demo','Custom']</param>
|
<param>['LDAP','Demo','Custom']</param>
|
||||||
</check>
|
</check>
|
||||||
@ -170,7 +181,7 @@
|
|||||||
<variable name='managerWebName'>Nom DNS de l'application de gestion de LemonLDAP::NG ex:manager.example.fr</variable>
|
<variable name='managerWebName'>Nom DNS de l'application de gestion de LemonLDAP::NG ex:manager.example.fr</variable>
|
||||||
<variable name='authWebName'>Nom DNS de service d'authentification de LemonLDAP::NG ex:auth.example.fr</variable>
|
<variable name='authWebName'>Nom DNS de service d'authentification de LemonLDAP::NG ex:auth.example.fr</variable>
|
||||||
<variable name='ldapUserBaseDN'>DN de base de l'emplactement des utilisateurs dans l'annuaire (ex: ou=users,o=gouv,c=fr)</variable>
|
<variable name='ldapUserBaseDN'>DN de base de l'emplactement des utilisateurs dans l'annuaire (ex: ou=users,o=gouv,c=fr)</variable>
|
||||||
<variable name='ldapBindUsererDN'>DN de l'utilisateur de connection en lecture à l'annuaire (ex: cn=reader,o=gouv,c=fr)</variable>
|
<variable name='ldapBindUserDN'>DN de l'utilisateur de connection en lecture à l'annuaire (ex: cn=reader,o=gouv,c=fr)</variable>
|
||||||
<variable name='llCheckLogins'>Affiche une case à cocher sur la mire SSO qui permet a l'utilisateur de voir l'historique de connection de son compte avant d'être redirigé vers le service demandé</variable>
|
<variable name='llCheckLogins'>Affiche une case à cocher sur la mire SSO qui permet a l'utilisateur de voir l'historique de connection de son compte avant d'être redirigé vers le service demandé</variable>
|
||||||
<variable name='llCSPTargets'>Liste des domaines à ajouter à la directive form-action.</variable>
|
<variable name='llCSPTargets'>Liste des domaines à ajouter à la directive form-action.</variable>
|
||||||
</help>
|
</help>
|
||||||
|
|||||||
@ -6,7 +6,14 @@
|
|||||||
<variables>
|
<variables>
|
||||||
|
|
||||||
<family name='eole sso'>
|
<family name='eole sso'>
|
||||||
<variable name='eolesso_adresse' type='domain_strict' description="Nom de domaine du serveur d'authentification SSO" redefine="True" exists='True' />
|
<variable name='eolesso_adresse' description="Nom de domaine du serveur d'authentification SSO" redefine="True" exists='True' />
|
||||||
|
<variable name='ldap_tls' redefine="True" exists='True' />
|
||||||
|
<variable name='eolesso_cas_folder' redefine="True" exists='True'>
|
||||||
|
<value>cas</value>
|
||||||
|
</variable>
|
||||||
|
<variable name='eolesso_port' redefine="True" exists='True'>
|
||||||
|
<value>443</value>
|
||||||
|
</variable>
|
||||||
</family>
|
</family>
|
||||||
|
|
||||||
</variables>
|
</variables>
|
||||||
|
|||||||
@ -1,5 +1,5 @@
|
|||||||
# Number of process (default: 7)
|
# Number of process (default: 7)
|
||||||
NPROC = %%lemonproc
|
NPROC=%%lemonproc
|
||||||
|
|
||||||
# Unix socket to listen to
|
# Unix socket to listen to
|
||||||
SOCKET=/run/llng-fastcgi-server/llng-fastcgi.sock
|
SOCKET=/run/llng-fastcgi-server/llng-fastcgi.sock
|
||||||
|
|||||||
@ -36,7 +36,7 @@
|
|||||||
;
|
;
|
||||||
; 1 - Defined logging level
|
; 1 - Defined logging level
|
||||||
; Set here one of error, warn, notice, info or debug
|
; Set here one of error, warn, notice, info or debug
|
||||||
logLevel = debug
|
logLevel = %%lm_loglevel
|
||||||
; Note that this has no effect for Apache2 logging: Apache LogLevel is used
|
; Note that this has no effect for Apache2 logging: Apache LogLevel is used
|
||||||
; instead
|
; instead
|
||||||
;
|
;
|
||||||
@ -65,9 +65,9 @@ logLevel = debug
|
|||||||
; 2.1 - Using Syslog
|
; 2.1 - Using Syslog
|
||||||
;
|
;
|
||||||
; For Syslog logging, you can also overwrite facilities. Default values:
|
; For Syslog logging, you can also overwrite facilities. Default values:
|
||||||
;logger = Lemonldap::NG::Common::Logger::Syslog
|
logger = Lemonldap::NG::Common::Logger::Syslog
|
||||||
;syslogFacility = daemon
|
syslogFacility = daemon
|
||||||
;userSyslogFacility = auth
|
userSyslogFacility = auth
|
||||||
;
|
;
|
||||||
; 2.2 - Using Log4perl
|
; 2.2 - Using Log4perl
|
||||||
;
|
;
|
||||||
|
|||||||
@ -173,6 +173,13 @@
|
|||||||
"ldapPpolicyControl": 0,
|
"ldapPpolicyControl": 0,
|
||||||
"ldapPwdEnc": "utf-8",
|
"ldapPwdEnc": "utf-8",
|
||||||
"ldapServer": "%%ldapScheme://%%ldapServer",
|
"ldapServer": "%%ldapScheme://%%ldapServer",
|
||||||
|
%if %%ldapScheme == "ldaps"
|
||||||
|
%if %%lmldapverify == "oui"
|
||||||
|
"ldapVerify": "required",
|
||||||
|
%else
|
||||||
|
"ldapVerify": "none",
|
||||||
|
%end if
|
||||||
|
%end if
|
||||||
"ldapSetPassword": 0,
|
"ldapSetPassword": 0,
|
||||||
"ldapTimeout": 120,
|
"ldapTimeout": 120,
|
||||||
"ldapUsePasswordResetAttribute": 1,
|
"ldapUsePasswordResetAttribute": 1,
|
||||||
|
|||||||
@ -1,3 +1,3 @@
|
|||||||
log_format lm_combined '$remote_addr - $lmremote_user [$time_local] '
|
log_format lm_app '$remote_addr - $upstream_http_lm_remote_user [$time_local] '
|
||||||
'"$request" $status $body_bytes_sent '
|
'"$request" $status $body_bytes_sent '
|
||||||
'"$http_referer" "$http_user_agent"';
|
'"$http_referer" "$http_user_agent" $upstream_http_lm_remote_custom';
|
||||||
|
|||||||
Reference in New Issue
Block a user