首页 发现 帮助
注册 登录
oscarleiva
/
energylink
1
0
派生 0
文件 工单管理 0 合并请求 0 Wiki
浏览代码

Devenv:LDAP: couple simplifications for LDAP (#17807)

* Add LDAP config instead sed use

* Add container name

* Add SizeLimit option to client and to server.
  Probably useless at this point, but it's better to have it then otherwise
Oleg Gaidarenko 6 年之前
父节点
5836427794
当前提交
ca136c7c22
共有 6 个文件被更改,包括 21 次插入4 次删除
分列视图 显示文件统计
  1. 2 0
      devenv/docker/blocks/openldap/Dockerfile
  2. 1 0
      devenv/docker/blocks/openldap/docker-compose.yaml
  3. 0 4
      devenv/docker/blocks/openldap/entrypoint.sh
  4. 16 0
      devenv/docker/blocks/openldap/ldap.conf
  5. 1 0
      go.mod
  6. 1 0
      pkg/services/ldap/ldap.go

+ 2 - 0
devenv/docker/blocks/openldap/Dockerfile
查看文件 

@@ -19,6 +19,8 @@ EXPOSE 389
 
 
 VOLUME ["/etc/ldap", "/var/lib/ldap"]
 
 
+COPY ldap.conf /etc/ldap.dist/ldap.conf
 
+
 
 COPY modules/ /etc/ldap.dist/modules
 
 COPY prepopulate/ /etc/ldap.dist/prepopulate

+ 1 - 0
devenv/docker/blocks/openldap/docker-compose.yaml
查看文件 

@@ -1,4 +1,5 @@
 
   openldap:
 
+    container_name: ldap
 
     build: docker/blocks/openldap
 
     environment:
 
       SLAPD_PASSWORD: grafana

+ 0 - 4
devenv/docker/blocks/openldap/entrypoint.sh
查看文件 

@@ -49,10 +49,6 @@ EOF
 
         dc_string="$dc_string,dc=$dc_part"
 
     done
 
 
-    base_string="BASE ${dc_string:1}"
 
-
 
-    sed -i "s/^#BASE.*/${base_string}/g" /etc/ldap/ldap.conf
 
-
 
     if [[ -n "$SLAPD_CONFIG_PASSWORD" ]]; then
 
         password_hash=`slappasswd -s "${SLAPD_CONFIG_PASSWORD}"`

+ 16 - 0
devenv/docker/blocks/openldap/ldap.conf
查看文件 

@@ -0,0 +1,16 @@
 
+#
 
+# LDAP Defaults
 
+#
 
+
 
+# See ldap.conf(5) for details
 
+# This file should be world readable but not world writable.
 
+
 
+BASE dc=grafana,dc=org
 
+#URI	ldap://ldap.example.com ldap://ldap-master.example.com:666
 
+
 
+SIZELIMIT	1000
 
+#TIMELIMIT	15
 
+#DEREF		never
 
+
 
+# TLS certificates (needed for GnuTLS)
 
+TLS_CACERT	/etc/ssl/certs/ca-certificates.crt

+ 1 - 0
go.mod
查看文件 

@@ -11,6 +11,7 @@ require (
 
 	github.com/bradfitz/gomemcache v0.0.0-20180710155616-bc664df96737
 
 	github.com/codahale/hdrhistogram v0.0.0-20161010025455-3a0bb77429bd // indirect
 
 	github.com/codegangsta/cli v1.20.0
 
+	github.com/davecgh/go-spew v1.1.1
 
 	github.com/denisenkom/go-mssqldb v0.0.0-20190315220205-a8ed825ac853
 
 	github.com/facebookgo/ensure v0.0.0-20160127193407-b4ab57deab51 // indirect
 
 	github.com/facebookgo/inject v0.0.0-20180706035515-f23751cae28b

+ 1 - 0
pkg/services/ldap/ldap.go
查看文件 

@@ -261,6 +261,7 @@ func (server *Server) getSearchRequest(
 
 	return &ldap.SearchRequest{
 
 		BaseDN:       base,
 
 		Scope:        ldap.ScopeWholeSubtree,
 
+		SizeLimit:    1000,
 
 		DerefAliases: ldap.NeverDerefAliases,
 
 		Attributes:   attributes,
 
 		Filter:       filter,