about summary refs log tree commit diff
path: root/nixos/tests/openldap.nix
AgeCommit message (Collapse)AuthorFilesLines
2022-07-22openldap: load client config from /etc, not the nix storeDan Callaghan1-5/+18
We want Openldap clients to load /etc/ldap.conf at runtime, not ${pkgs.openldap}/etc/ldap.conf which is always a sample config. Pass sysconfdir=/etc at compile time, so that /etc/krb5.conf is embedded in the library as the path of its config file. Pass sysconfdir=${out}/etc at install time, so that the sample configs and schema files are correctly included in the build output. This hack works because the Makefiles are not smart enough to notice that the sysconfdir variable has changed across invocations -- because nobody ever writes their Makefiles to be that smart. :-) Fixes #181937.
2022-06-29openldap: test starting with empty DBKai Wohlfahrt1-4/+14
This addresses the original concern behind #92544
2022-06-29openldap: test and fix mutable configKai Wohlfahrt1-1/+19
2022-06-29openldap: use specialisations for testsKai Wohlfahrt1-88/+91
This speeds up tests a bit. Also, ensure that mutable config works for manual config dir.
2022-06-29openldap: run under systemd-defined user/groupKai Wohlfahrt1-1/+1
This improves security, by starting the service as an unprivileged user, rather than starting as root and relying on the service to drop privileges. This requires a significant cleanup of pre-init scripts, to make use of StateDirectory and RuntimeDirectory for permissions.
2022-06-29openldap: change default ldapi directoryKai Wohlfahrt1-0/+1
By default, this is /run/ldapi, which is not compatible with systemd's runtime directories. Change it to /run/slapd/ldapi (in library and server). This makes `ldapi:///` work as a default socket again.
2022-06-29openldap: remove deprecated optionsKai Wohlfahrt1-19/+0
2022-03-28treewide: machine -> nodes.machineRobert Hensing1-3/+3
2021-02-18nixos/tests/openldap: make openldap test auto-callablesternenseemann1-7/+12
The NixOS manual documents that you can invoke every tests using nix-build path/to/nixos/tests/test.nix which was not the case for openldap since it is not autocallable, but requires pkgs and system as arguments. Usually, make-test-pythons.nix takes care of this if it is imported at the top-level, but since openldap.nix contains multiple tests, this was not the case. This is however easily fixed by: * Adding default values for the pkgs and system arguments based on the definition in make-test-python.nix * Passing pkgs and system explicitly to make-test-python.nix to ensure the pkgs and system values passed from all-tests.nix are used.
2020-11-21nixos/openldap: migrate sssd-ldap to new settingsKai Wohlfahrt1-8/+6
2020-11-21nixos/openldap: Fix sssd-ldap testKai Wohlfahrt1-1/+0
Use this as a test of the migration warnings/functionality.
2020-11-21nixos/openldap: use mkRenamedOptionModuleKai Wohlfahrt1-9/+6
This offers less helpful warnings, but makes the implementation considerably more straightforward.
2020-11-21nixos/openldap: fix path + base64 value typesKai Wohlfahrt1-2/+9
2020-11-21nixos/openldap: Remove extraConfig optionsKai Wohlfahrt1-22/+0
Instead of deprecating, as per PR feedback
2020-11-21nixos/openldap: Allow declarativeContents for multiple databasesKai Wohlfahrt1-5/+5
2020-11-21nixos/openldap: switch to slapd.d configurationKai Wohlfahrt1-25/+138
The old slapd.conf is deprecated. Replace with slapd.d, and use this opportunity to write some structured settings. Incidentally, this fixes the fact that openldap is reported up before any checks have completed, by using forking mode.
2019-12-04nixosTests.openldap: port test to pythonJacek Galowicz1-4/+6
2019-04-01nixos/openldap: add new optionsSimon Lackerbauer1-9/+5
2018-04-04nixos/tests/openldap: Fix nameTuomas Tynkkynen1-1/+1
2018-03-07openldap: Fix testTim Steinbach1-1/+1
2018-03-03nixos/openldap: add testJörg Thalheim1-0/+35
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-07-24 09:21:50 +0000