NixOS Wiki

Oncall: Difference between revisions

← Older edit
VisualWikitext
Onny (talk | contribs)
220 edits
Add OpenLDAP config for authentication
Onny (talk | contribs)
220 edits
mNo edit summary
 
(2 intermediate revisions by the same user not shown)
Line 25: Line 25:
in
in
{
{
  environment.etc."oncall-secrets.yml".text = ''
  auth:
    ldap_bind_password: "${ldapRootPassword}"
  '';


   services.oncall = {
   services.oncall = {
Line 34: Line 39:
         ldap_user_suffix = "";
         ldap_user_suffix = "";
         ldap_bind_user = "cn=root,${ldapSuffix}";
         ldap_bind_user = "cn=root,${ldapSuffix}";
        ldap_bind_password = ldapRootPassword;
         ldap_base_dn = "ou=accounts,${ldapSuffix}";
         ldap_base_dn = "ou=accounts,${ldapSuffix}";
         ldap_search_filter = "(uid=%s)";
         ldap_search_filter = "(uid=%s)";
Line 42: Line 46:
           full_name = "cn";
           full_name = "cn";
           email = "mail";
           email = "mail";
           mobile = "mobile";
           mobile = "telephoneNumber";
          sms = "mobile";
         };
         };
       };
       };
     };
     };
    secrets = [ "/etc/oncall-secrets.yml" ];
   };
   };


Line 86: Line 92:


         dn: uid=${testUser},ou=accounts,${ldapSuffix}
         dn: uid=${testUser},ou=accounts,${ldapSuffix}
         objectClass: person
         objectClass: top
         objectClass: posixAccount
         objectClass: inetOrgPerson
         uid: ${testUser}
         uid: ${testUser}
        homeDirectory: /home/${testUser}
        uidNumber: 1234
        gidNumber: 1234
         userPassword: ${testPassword}
         userPassword: ${testPassword}
         cn: "Test User"
         cn: Test User
         sn: "User"
         sn: User
        mail: test@example.org
        telephoneNumber: 012345678910
        mobile: 012345678910
       '';
       '';
     };
     };
Retrieved from "https://wiki.nixos.org/wiki/Oncall"