digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-20 13:50:45 +00:00
Code Issues Packages Projects Releases Wiki Activity

Refactor phpLDAPadmin configuration in ldap_server install manifest - ordering

Browse Source
This commit is contained in:
Z. Cliffe Schreuders
2026-02-05 10:21:36 +00:00
parent a94812f520
commit c8010035a9
1 changed files with 21 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

37
modules/utilities/unix/authentication/ldap_server/manifests/install.pp
View File

@@ -53,22 +53,6 @@ class ldap_server::install {
ensure => installed,
}
->
# Configure phpLDAPadmin base DN to match LDAP domain
exec { 'configure-phpldapadmin-base-dn':
command => "/bin/sed -i \"s/\\$servers->setValue('server','base',array('dc=example,dc=com'));/\\$servers->setValue('server','base',array('${base_dn}'));/\" /etc/phpldapadmin/config.php",
onlyif => "/bin/grep -q \"dc=example,dc=com\" /etc/phpldapadmin/config.php",
path => ['/bin', '/usr/bin'],
}
->
# Configure phpLDAPadmin to start auto-incrementing UIDs at 10000 and GIDs at 5000
# This avoids conflicts with local system users (typically 1000-9999)
# Inserts the configuration line before the closing ?> tag
exec { 'configure-phpldapadmin-auto-uid':
command => "/bin/sed -i \"/^?>$/i \\$servers->setValue('auto_number','min',array('uidNumber'=>10000,'gidNumber'=>5000));\" /etc/phpldapadmin/config.php",
unless => "/bin/grep -q \"auto_number.*uidNumber\" /etc/phpldapadmin/config.php",
path => ['/bin', '/usr/bin'],
}
->
# Enable PHP module in Apache (version-agnostic)
# Uses find to locate the installed PHP module and enables it
@@ -102,4 +86,25 @@ class ldap_server::install {
command => '/usr/sbin/service apache2 restart',
path => ['/bin', '/usr/bin', '/usr/sbin'],
}
->
# Configure phpLDAPadmin base DN to match LDAP domain
exec { 'configure-phpldapadmin-base-dn':
command => "/bin/sed -i \"s/\\$servers->setValue('server','base',array('dc=example,dc=com'));/\\$servers->setValue('server','base',array('${base_dn}'));/\" /etc/phpldapadmin/config.php",
onlyif => "/bin/grep -q \"dc=example,dc=com\" /etc/phpldapadmin/config.php",
path => ['/bin', '/usr/bin'],
}
->
# Configure phpLDAPadmin to start auto-incrementing UIDs at 10000 and GIDs at 5000
# This avoids conflicts with local system users (typically 1000-9999)
# Inserts the configuration line before the closing ?> tag (with flexible whitespace matching)
exec { 'configure-phpldapadmin-auto-uid':
command => "/bin/sed -i \"/^?>\\s*$/i \\\$servers->setValue('auto_number','min',array('uidNumber'=>10000,'gidNumber'=>5000));\" /etc/phpldapadmin/config.php && echo 'phpLDAPadmin auto-UID configured'",
onlyif => [
"/bin/test -f /etc/phpldapadmin/config.php",
"/bin/grep -q '^?>' /etc/phpldapadmin/config.php"
],
unless => "/bin/grep -q \"uidNumber.*10000\" /etc/phpldapadmin/config.php",
path => ['/bin', '/usr/bin'],
}
}