homelab/archive/2022.07.bxl-k3s-pi/utils/idp/ldapusermanager/config.yaml

32 lines
1000 B
YAML

apiVersion: v1
kind: ConfigMap
metadata:
name: ldapusermanager
namespace: idp
data:
LDAP_URI: "ldap://openldap.idp.svc.cluster.local"
LDAP_BASE_DN: "dc=bhasher,dc=com"
LDAP_ADMIN_BIND_DN: "cn=admin,dc=bhasher,dc=com"
LDAP_ADMINS_GROUP: "admin"
SERVER_HOSTNAME: "accounts.bhasher.com"
SERVER_PORT: "80"
NO_HTTPS: "true"
ORGANISATION_NAME: "Bhasher's Accounts"
SITE_NAME: "Account Manager"
SHOW_POSIX_ATTRIBUTE: "true"
LDAP_USER_OU: "users"
LDAP_GROUP_OU: "groups"
LDAP_REQUIRE_STARTTLS: "false"
LDAP_IGNORE_CERT_ERRORS: "true"
LDAP_ACCOUNT_ATTRIBUTE: "uid"
LDAP_GROUP_ATTRIBUTE: "cn"
DEFAULT_USER_GROUP: "default"
ENFORCE_SAFE_SYSTEM_NAMES: "false"
USERNAME_FORMAT: "{first_name}.{last_name}"
PASSWORD_HASH: "SHA512CRYPT"
ACCEPT_WEAK_PASSWORDS: "false"
# LDAP_GROUP_MEMBERSHIP_USES_UID: "true"
LDAP_ACCOUNT_ADDITIONAL_ATTRIBUTES: "jpegPhoto^:Profile picture,sshpubkey^+:SSH public key"
REMOTE_HTTP_HEADERS_LOGIN: "true"
# FORCE_RFC2307BIS: "true"