migrate to new openldap module syntax

[?]
Sep 23, 2021, 6:32 PM
SJXHTJTRMT75AMKDZB2YPNMI73LHUNUA7POQNSDUY7WTNNHYYY6QC

Dependencies

  • [2] 4NA42NTF fix ldap nixos test
  • [3] A4NSGFS3 LDAP: add VM test to flake.nix
  • [4] 3VSNQ6TJ Implement VM-test for gitea plugin
  • [5] B22SQY65 LDAP add test for roles and multiple users
  • [6] RWNXH3H2 lastModified -> lastModifiedDate
  • [7] 4GDEH2SR ldap: Use hashed passwords in the test
  • [8] LF7BSAG7 tests: fix invalid YAML

Change contents

  • replacement in flake.nix at line 854
    [3.233][3.233:508]()
    services.openldap = {
    enable = true;
    suffix = "dc=example";
    rootdn = "cn=root,dc=example";
    rootpw = "notapassword";
    database = "bdb";
    dataDir = "/var/lib/openldap";
    [3.233]
    [3.569]
    services.openldap.enable = true;
    services.openldap.settings.children = {
    "olcDatabase={1}mdb".attrs = {
    objectClass = [ "olcDatabaseConfig" "olcMdbConfig" ];
    database = "{1}mdbg";
    olcSuffix = "dc=example";
    olcRootDN = "cn=root,dc=example";
    olcRootPW = "notapassword";
    olcDbDirectory = "/var/lib/openldap";
    };
    };
  • replacement in flake.nix at line 866
    [3.570][2.0:211](),[2.211][3.611:819](),[3.611][3.611:819]()
    # userPassword generated via `slappasswd`
    # The admin user has the password `password` and `user` has the password `foobar`.
    declarativeContents."dc=example" = ''
    dn: dc=example
    dc: example
    o: Root
    objectClass: top
    objectClass: dcObject
    objectClass: organization
    [3.570]
    [3.819]
    # userPassword generated via `slappasswd`
    # The admin user has the password `password` and `user` has the password `foobar`.
    services.openldap.declarativeContents."dc=example" = ''
    dn: dc=example
    dc: example
    o: Root
    objectClass: top
    objectClass: dcObject
    objectClass: organization
  • replacement in flake.nix at line 876
    [3.820][3.820:1016]()
    dn: ou=users,dc=example
    ou: users
    description: All users
    objectClass: top
    objectClass: organizationalUnit
    [3.820]
    [3.1016]
    dn: ou=users,dc=example
    ou: users
    description: All users
    objectClass: top
    objectClass: organizationalUnit
  • replacement in flake.nix at line 882
    [3.1017][3.0:199]()
    dn: ou=groups,dc=example
    ou: groups
    description: All groups
    objectClass: top
    objectClass: organizationalUnit
    [3.1017]
    [3.199]
    dn: ou=groups,dc=example
    ou: groups
    description: All groups
    objectClass: top
    objectClass: organizationalUnit
  • replacement in flake.nix at line 888
    [3.200][3.200:445]()
    dn: cn=hydra_admin,ou=groups,dc=example
    cn: hydra_admin
    description: Hydra Admin user group
    objectClass: groupOfNames
    member: cn=admin,ou=users,dc=example
    [3.200]
    [3.445]
    dn: cn=hydra_admin,ou=groups,dc=example
    cn: hydra_admin
    description: Hydra Admin user group
    objectClass: groupOfNames
    member: cn=admin,ou=users,dc=example
  • replacement in flake.nix at line 894
    [3.446][3.1017:1255](),[3.1017][3.1017:1255](),[3.1255][2.212:283]()
    dn: cn=user,ou=users,dc=example
    objectClass: organizationalPerson
    objectClass: inetOrgPerson
    sn: user
    cn: user
    mail: user@example
    userPassword: {SSHA}gLgBMb86/3wecoCp8gtORgIF2/qCRpqs
    [3.446]
    [3.447]
    dn: cn=user,ou=users,dc=example
    objectClass: organizationalPerson
    objectClass: inetOrgPerson
    sn: user
    cn: user
    mail: user@example
    userPassword: {SSHA}gLgBMb86/3wecoCp8gtORgIF2/qCRpqs
  • replacement in flake.nix at line 902
    [3.448][3.448:690](),[3.690][2.284:355](),[2.355][3.1294:1409](),[3.484][3.1294:1409](),[3.731][3.1294:1409](),[3.1294][3.1294:1409]()
    dn: cn=admin,ou=users,dc=example
    objectClass: organizationalPerson
    objectClass: inetOrgPerson
    sn: admin
    cn: admin
    mail: admin@example
    userPassword: {SSHA}BsgOQcRnoiULzwLrGmuzVGH6EC5Dkwmf
    '';
    };
    systemd.services.hdyra-server.environment.CATALYST_DEBUG = "1";
    [3.448]
    [3.1409]
    dn: cn=admin,ou=users,dc=example
    objectClass: organizationalPerson
    objectClass: inetOrgPerson
    sn: admin
    cn: admin
    mail: admin@example
    userPassword: {SSHA}BsgOQcRnoiULzwLrGmuzVGH6EC5Dkwmf
    '';
    systemd.services.hydra-server.environment.CATALYST_DEBUG = "1";