History

Emmanuel Garette 55b20ac9ca update doc		2023-08-04 14:27:27 +02:00
..
dictionaries	update doc	2023-08-04 14:27:27 +02:00
extras/oauth2	update	2023-07-31 15:30:32 +02:00
funcs	remove application version	2022-07-01 22:10:33 +02:00
manual/image/preinstall	remove application version	2022-07-01 22:10:33 +02:00
templates	update	2023-07-31 15:30:32 +02:00
tests	manage well-known file (from internal or external)	2022-07-05 22:08:20 +02:00
applicationservice.yml	update doc	2023-08-01 15:13:17 +02:00
DEBUG.md	ansible template	2023-06-23 08:12:05 +02:00
doc.md	remove application version	2022-07-01 22:10:33 +02:00
README.md	update doc	2023-08-04 14:27:27 +02:00

README.md

Table of Contents

lemonldap

Synopsis
Basic variables

Général

Reverse proxy

Point d'entrée des clients

LemonLDAP

Variables for expert

Général

Annuaire OpenLDAP

Client

NGINX
Reverse proxy

Point d'entrée des clients

LemonLDAP

Associated providers
Example
Dependances
Supplier

lemonldap

Synopsis

LemonLDAP, a Web Single Sign On and Access Management.

For more informations

Basic variables

Général

Reverse proxy

Point d'entrée des clients

This a family is a leadership.

Description	Type	Example	Supplier
Nom de domaine exterieur du serveur (general.revprox.revprox_client.revprox_client_external_domainnames) [+]	domainname	service.example.net	ReverseProxy:external
Nom de l'arborescence racine du site (general.revprox.revprox_client.revprox_client_location)	filename		ReverseProxy:location

LemonLDAP

Configuration de la solution d'authentification unique LemonLDAP::NG.

Description	Type	Example
Courriel de l'administrateur (general.lemonldap.lemon_mail_admin)	mail	admin@example.net

[+]: variable is multiple
bold: variable is mandatory

Variables for expert

Général

Annuaire OpenLDAP

Client

Description	Type	Values	Supplier
Nom de la famille LDAP (general.ldap.client.ldapclient_family)	unix_user	all	LDAP:family
Base DN de l'annuaire (general.ldap.client.ldapclient_base_dn)	string	calculated	LDAP:base_dn
Base DN de l'annuaire des utilisateurs (general.ldap.client.ldapclient_search_dn)	string	calculated
Base DN de l'annuaire des groupes (general.ldap.client.ldapclient_group_dn)	string	calculated
Base DN de l'annuaire des utilisateurs n'appartenant à une famille (general.ldap.client.ldapclient_user_dn)	string	calculated

NGINX

Paramétrage global de NGINX.

Description	Type	Values	Choices
Longueur maximum pour un nom de domaine (general.nginx.nginx_hash_bucket_size)	choice	128	128 64 32
Taille maximale des données reçues par la méthode POST (en Mo) (general.nginx.nginx_post_max_size)	number	32

Reverse proxy

Point d'entrée des clients

This a family is a leadership.

Description	Supplier
Taille maximum du corps (general.revprox.revprox_client.revprox_client_max_body_size)	ReverseProxy:max_body_size

LemonLDAP

Configuration de la solution d'authentification unique LemonLDAP::NG.

Description	Type	Values
Nombre de processus dédié à LemonLdap (équivalent au nombre de processeurs) (general.lemonldap.lemon_proc)	number	1

[+]: variable is multiple
bold: variable is mandatory

Associated providers

LocalDNS
Journald
SMTP
LDAP
ReverseProxy

bold: provider is mandatory

Example

Zone names are provided as examples. Think about adapting with the value of provider_zone in configuration file.

lemonldap:
  applicationservice: lemonldap
  provider_zone: oauth2
  zones_name:
    - ldap
    - localdns
    - reverseproxy
    - smtp
  values:
    general.revprox.revprox_client.revprox_client_external_domainnames:
      - service.example.net
    general.lemonldap.lemon_mail_admin: admin@example.net

Dependances

Supplier

oauth2-client

All applications services for this dataset.