forgejo: add extra ldap bind user #4
2 changed files with 7 additions and 6 deletions
|
@ -137,6 +137,7 @@ gitea_fail2ban_jail_action: "iptables-allports"
|
||||||
|
|
||||||
### mgrote_gitea_setup
|
### mgrote_gitea_setup
|
||||||
gitea_ldap_host: "ldap.mgrote.net"
|
gitea_ldap_host: "ldap.mgrote.net"
|
||||||
|
gitea_ldap_base_path: "dc=mgrote,dc=net"
|
||||||
gitea_ldap_bind_user: "forgejo_bind_user"
|
gitea_ldap_bind_user: "forgejo_bind_user"
|
||||||
gitea_ldap_bind_pass: "{{ lookup('keepass', 'lldap_forgejo_bind_user', 'password') }}"
|
gitea_ldap_bind_pass: "{{ lookup('keepass', 'lldap_forgejo_bind_user', 'password') }}"
|
||||||
gitea_admin_user: "fadmin"
|
gitea_admin_user: "fadmin"
|
||||||
|
|
|
@ -15,10 +15,10 @@
|
||||||
--security-protocol "unencrypted" \
|
--security-protocol "unencrypted" \
|
||||||
--host "{{ gitea_ldap_host }}" \
|
--host "{{ gitea_ldap_host }}" \
|
||||||
--port "3890" \
|
--port "3890" \
|
||||||
--bind-dn "uid={{ gitea_ldap_bind_user }},ou=people,dc=mgrote,dc=net" \
|
--bind-dn "uid={{ gitea_ldap_bind_user }},ou=people,{{ gitea_ldap_base_path }}" \
|
||||||
--bind-password "{{ gitea_ldap_bind_pass }}" \
|
--bind-password "{{ gitea_ldap_bind_pass }}" \
|
||||||
--user-search-base "ou=people,dc=mgrote,dc=net" \
|
--user-search-base "ou=people,{{ gitea_ldap_base_path }}" \
|
||||||
--user-filter "(&(memberof=cn=gitea,ou=groups,dc=mgrote,dc=net)(|(uid=%[1]s)(mail=%[1]s)))" \
|
--user-filter "(&(memberof=cn=gitea,ou=groups,{{ gitea_ldap_base_path }})(|(uid=%[1]s)(mail=%[1]s)))" \
|
||||||
--username-attribute "uid" \
|
--username-attribute "uid" \
|
||||||
--email-attribute "mail" \
|
--email-attribute "mail" \
|
||||||
--firstname-attribute "givenName" \
|
--firstname-attribute "givenName" \
|
||||||
|
@ -41,10 +41,10 @@
|
||||||
--security-protocol "unencrypted" \
|
--security-protocol "unencrypted" \
|
||||||
--host "{{ gitea_ldap_host }}" \
|
--host "{{ gitea_ldap_host }}" \
|
||||||
--port "3890" \
|
--port "3890" \
|
||||||
--bind-dn "uid={{ gitea_ldap_bind_user }},ou=people,dc=mgrote,dc=net" \
|
--bind-dn "uid={{ gitea_ldap_bind_user }},ou=people,{{ gitea_ldap_base_path }}" \
|
||||||
--bind-password "{{ gitea_ldap_bind_pass }}" \
|
--bind-password "{{ gitea_ldap_bind_pass }}" \
|
||||||
--user-search-base "ou=people,dc=mgrote,dc=net" \
|
--user-search-base "ou=people,{{ gitea_ldap_base_path }}" \
|
||||||
--user-filter "(&(memberof=cn=gitea,ou=groups,dc=mgrote,dc=net)(|(uid=%[1]s)(mail=%[1]s)))" \
|
--user-filter "(&(memberof=cn=gitea,ou=groups,{{ gitea_ldap_base_path }})(|(uid=%[1]s)(mail=%[1]s)))" \
|
||||||
--username-attribute "uid" \
|
--username-attribute "uid" \
|
||||||
--email-attribute "mail" \
|
--email-attribute "mail" \
|
||||||
--firstname-attribute "givenName" \
|
--firstname-attribute "givenName" \
|
||||||
|
|
Loading…
Reference in a new issue