718itbiz/ldap-client
1
0
Fork 0
Code Issues 1 Pull Requests Releases Wiki Activity

vars are good

Browse Source
This commit is contained in:
William Mantly
2021-04-21 13:45:37 -04:00
parent 36de57fba1
commit 7dee7453fe
5 changed files with 43 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
files/ldap-ssh-key.sh
View File

@ -1,3 +1,3 @@
#!/bin/bash
ldapsearch -h {{ldap_host}} -D "{{ldap_bind_dn}}" -w "{{ldap_bind_password}}" '(&(|(memberof=cn=host_access,ou=groups,dc=theta42,dc=com)(memberof=cn=host_{{current_host}}_access,ou=groups,dc=theta42,dc=com))(uid='"$1"'))' 'sshPublicKey' | sed -n '/^ /{H;d};/sshPublicKey:/x;$g;s/\n *//g;s/sshPublicKey: //gp'
ldapsearch -h {{ldap_host}} -D "{{ldap_bind_dn}}" -w "{{ldap_bind_password}}" '(&(|(memberof=cn=host_access,ou=Groups,{{ldap_base_dn}})(memberof=cn=host_{{current_host}}_access,ou=Groups,{{ldap_base_dn}}))(uid='"$1"'))' 'sshPublicKey' | sed -n '/^ /{H;d};/sshPublicKey:/x;$g;s/\n *//g;s/sshPublicKey: //gp'

6
files/sudo-ldap.conf
View File

@ -1,9 +1,9 @@
BASE dc=theta42,dc=com
BASE {{ldap_base_dn}}
URI ldap://{{ldap_host}}
BINDDN {{ldap_bind_dn}}
BINDPW {{ldap_bind_password}}
sudoers_base dc=theta42,dc=com
sudoers_base {{ldap_bind_dn}}
SUDOERS_SEARCH_FILTER (|(memberof=cn=host_admin,ou=groups,dc=theta42,dc=com)(memberof=cn=host_{{current_host}}_admin,ou=groups,dc=theta42,dc=com))
SUDOERS_SEARCH_FILTER (|(memberof=cn=host_admin,ou=Groups,{{ldap_base_dn}})(memberof=cn=host_{{current_host}}_admin,ou=Groups,{{ldap_base_dn}}))