Merge pull request #1762 from heidemn-faro/doc/ldap-example

[doc/example] Make LDAP example functional again by running OpenLDAP with docker-compose
This commit is contained in:
Márk Sági-Kazár 2020-07-15 15:51:17 +02:00 committed by GitHub
commit cb46a28c3c
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 29 additions and 10 deletions

View file

@ -13,16 +13,17 @@ The connector executes two primary queries:
The dex repo contains a basic LDAP setup using [OpenLDAP][openldap]. The dex repo contains a basic LDAP setup using [OpenLDAP][openldap].
First start the LDAP server using the example script. This will run the OpenLDAP daemon and seed it with an initial set of users. First start the LDAP server using docker-compose. This will run the OpenLDAP daemon in a Docker container, and seed it with an initial set of users.
``` ```
./scripts/slapd.sh cd examples/ldap
docker-compose up
``` ```
This script sets the LDAP daemon to debug mode, and is expected to print several error messages which are normal. Once the server is up, run dex. This container is expected to print several warning messages which are normal. Once the server is up, run dex in another terminal.
``` ```
./bin/dex serve examples/config-ldap.yaml ./bin/dex serve examples/ldap/config-ldap.yaml
``` ```
Then run the OAuth client in another terminal. Then run the OAuth client in another terminal.

View file

@ -1,8 +1,10 @@
dn: dc=example,dc=org # Already included in default config of Docker image osixia/openldap:1.4.0.
objectClass: dcObject #
objectClass: organization # dn: dc=example,dc=org
o: Example Company # objectClass: dcObject
dc: example # objectClass: organization
# o: Example Company
# dc: example
dn: ou=People,dc=example,dc=org dn: ou=People,dc=example,dc=org
objectClass: organizationalUnit objectClass: organizationalUnit

View file

@ -11,7 +11,7 @@ connectors:
name: OpenLDAP name: OpenLDAP
id: ldap id: ldap
config: config:
host: localhost:10389 host: localhost:389
# No TLS for this setup. # No TLS for this setup.
insecureNoSSL: true insecureNoSSL: true

View file

@ -0,0 +1,16 @@
version: "3"
services:
ldap:
image: osixia/openldap:1.4.0
# Copying is required because the entrypoint modifies the *.ldif files.
# For verbose output, use: command: ["--copy-service", "--loglevel", "debug"]
command: ["--copy-service"]
# https://github.com/osixia/docker-openldap#seed-ldap-database-with-ldif
# Option 1: Add custom seed file -> mount to /container/service/slapd/assets/config/bootstrap/ldif/custom/
# Option 2: Overwrite default seed file -> mount to /container/service/slapd/assets/config/bootstrap/ldif/
volumes:
- ./config-ldap.ldif:/container/service/slapd/assets/config/bootstrap/ldif/custom/config-ldap.ldif
ports:
- 389:389
- 636:636