gnunux/dataset
1
0
Fork 0
forked from stove/dataset
Code Issues Pull requests Projects Releases Wiki Activity
dataset/seed/lemonldap/README.md

139 lines
9.2 KiB
Markdown
Raw Normal View History

docs for application services
2022-12-24 13:01:51 +01:00
---
gitea: none
include_toc: true
---
update doc
2023-08-11 09:38:05 +02:00
[Return to the list of application services.](../README.md)
docs for application services
2022-12-24 13:01:51 +01:00
# lemonldap
update doc
2023-08-02 09:26:54 +02:00
## Synopsis
docs for application services
2022-12-24 13:01:51 +01:00
update doc
2023-08-11 09:38:05 +02:00
[LemonLDAP, a Web Single Sign On and Access Management.](https://lemonldap-ng.org/)
docs for application services
2022-12-24 13:01:51 +01:00
update doc
2023-08-02 09:26:54 +02:00
## Basic variables
update doc
2023-08-01 15:13:17 +02:00
update doc
2023-08-11 09:38:05 +02:00
### General
update doc
2023-08-01 15:13:17 +02:00
update doc
2023-08-02 09:26:54 +02:00
#### Reverse proxy
update doc
2023-08-01 15:13:17 +02:00
update doc
2023-08-11 09:38:05 +02:00
##### Clients configuration
update doc
2023-08-02 09:26:54 +02:00
update doc
2023-08-10 21:55:46 +02:00
This family is a leadership.
update doc
2023-08-02 09:26:54 +02:00
update doc
2023-08-11 09:38:05 +02:00
| Parameter | Comments |
|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|--------------------------------------------------------------------|
| **[general.revprox.revprox_client.revprox_client_external_domainnames](dictionaries/21_revprox_client.xml)**<br/>mandatory, multiple<br/>**Type:** [`domainname`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Service external domain name.<br/>**Example:** service.example.net |
| **[general.revprox.revprox_client.revprox_client_location](dictionaries/21_revprox_client.xml)**<br/>mandatory<br/>**Type:** [`filename`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | URI to route request to the correct service.<br/>**Default:** / |
update doc
2023-08-02 09:26:54 +02:00
#### LemonLDAP
Configuration de la solution d'authentification unique LemonLDAP::NG.
| Parameter | Comments |
|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------------------|
| **[general.lemonldap.lemon_mail_admin](dictionaries/70_lemonldap_ng.xml)**<br/>mandatory<br/>**Type:** [`mail`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Courriel de l'administrateur.<br/>**Example:** admin@example.net |
## Variables for expert
update doc
2023-08-11 09:38:05 +02:00
### General
update doc
2023-08-02 09:26:54 +02:00
update doc
2023-08-11 09:38:05 +02:00
#### OpenLDAP directory
update doc
2023-08-02 09:26:54 +02:00
##### Client
update doc
2023-08-11 09:38:05 +02:00
| Parameter | Comments |
|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------|
| **[general.ldap.client.ldapclient_family](dictionaries/70_lemonldap_ng.xml)**<br/>mandatory<br/>**Type:** [`unix_user`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Restrict service configuration for a LDAP family.<br/>"all" for all families.<br/>**Default:** all |
update doc
2023-08-02 09:26:54 +02:00
#### NGINX
update doc
2023-08-11 09:38:05 +02:00
| Parameter | Comments |
|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|----------------------------------------------------------------------------------------------------------------|
| **[general.nginx.nginx_hash_bucket_size](dictionaries/21_nginx.xml)**<br/>mandatory<br/>**Type:** [`choice`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | The bucket size for the server names hash tables.<br/>**Choices:**<br/>- `128` ← default<br/>- `64`<br/>- `32` |
| **[general.nginx.nginx_post_max_size](dictionaries/21_nginx.xml)**<br/>mandatory<br/>**Type:** [`number`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | The maximum allowed size of the client request body.<br/>This value is in Mb.<br/>**Default:** 32 |
update doc
2023-08-02 09:26:54 +02:00
#### Reverse proxy
update doc
2023-08-11 09:38:05 +02:00
##### Clients configuration
update doc
2023-08-02 09:26:54 +02:00
update doc
2023-08-10 21:55:46 +02:00
This family is a leadership.
update doc
2023-08-01 15:13:17 +02:00
update doc
2023-08-11 09:38:05 +02:00
| Parameter | Comments |
|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|------------------------------------------------------|
| **[general.revprox.revprox_client.revprox_client_max_body_size](dictionaries/21_revprox_client.xml)**<br/>**Type:** [`string`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | The maximum allowed size of the client request body. |
update doc
2023-08-02 09:26:54 +02:00
#### LemonLDAP
Configuration de la solution d'authentification unique LemonLDAP::NG.
| Parameter | Comments |
|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|-------------------------------------------------------------------------------------------------|
| **[general.lemonldap.lemon_proc](dictionaries/70_lemonldap_ng.xml)**<br/>mandatory<br/>**Type:** [`number`](https://forge.cloud.silique.fr/risotto/rougail/src/branch/main/doc/variable/README.md#le-type-de-la-variable) | Nombre de processus dédié à LemonLdap (équivalent au nombre de processeurs).<br/>**Default:** 1 |
## Requirements services
update doc
2023-08-11 09:38:05 +02:00
### Mandatories
- LocalDNS: [nsd-local](../nsd-local/README.md)
- SMTP: [postfix-relay](../postfix-relay/README.md)
- LDAP: [openldap](../openldap/README.md)
- ReverseProxy: [nginx-reverse-proxy](../nginx-reverse-proxy/README.md)
### Optionals
- Journald: [vector](../vector/README.md)
update doc
2023-08-02 09:26:54 +02:00
**bold**: provider is mandatory
## Example
Zone names are provided as examples. Think about adapting with the value of provider_zone in configuration file.
update doc
2023-08-01 15:13:17 +02:00
```
lemonldap:
applicationservice: lemonldap
provider_zone: oauth2
zones_name:
- ldap
- localdns
- reverseproxy
- smtp
update doc
2023-08-02 09:26:54 +02:00
values:
general.revprox.revprox_client.revprox_client_external_domainnames:
- service.example.net
general.lemonldap.lemon_mail_admin: admin@example.net
update doc
2023-08-01 15:13:17 +02:00
```
docs for application services
2022-12-24 13:01:51 +01:00
## Dependances
update documentations
2023-01-17 21:43:32 +01:00
- [ldap-client](../ldap-client/README.md)
- [relay-mail-client](../relay-mail-client/README.md)
TLS
2023-02-14 14:24:16 +01:00
- [nginx-https](../nginx-https/README.md)
- [nginx-common](../nginx-common/README.md)
- [reverse-proxy-client](../reverse-proxy-client/README.md)
docs for application services
2022-12-24 13:01:51 +01:00
- [base-debian-bullseye](../base-debian-bullseye/README.md)
- [base-debian](../base-debian/README.md)
- [systemd](../systemd/README.md)
- [base-machine](../base-machine/README.md)
- [base](../base/README.md)
- [dns-local](../dns-local/README.md)
TLS
2023-02-14 14:24:16 +01:00
- [pki-tls](../pki-tls/README.md)
doc: update README files
2023-06-29 18:56:46 +02:00
- [journald](../journald/README.md)
update doc
2023-07-31 18:41:59 +02:00
- [resolved](../resolved/README.md)
docs for application services
2022-12-24 13:01:51 +01:00
update doc
2023-08-11 09:38:05 +02:00
## Useful for services
- [dovecot](../dovecot/README.md): Postfix and Dovecot as mail servers (IMAP and submission).
- [forgejo](../forgejo/README.md): Forgejo, a community managed lightweight code hosting solution.
- [gitea](../gitea/README.md): Transitional package for Gitea to Forgejo.
- [grafana](../grafana/README.md): Grafana is an analytics and interactive visualization web application.
- [mailman](../mailman/README.md): GNU Mailman, managing electronic mail discussion and e-newsletter lists.
- [nextcloud](../nextcloud/README.md): Nextcloud, Online collaboration platform.
- [odoo](../odoo/README.md): Odoo, an ERP and CRM.
- [peertube](../peertube/README.md): Peertube, a federated (ActivityPub) video streaming platform.
- [piwigo](../piwigo/README.md): Piwigo, a photo management software.
- [roundcube](../roundcube/README.md): Roundcube, a webmail.
Reference in a new issue Copy permalink