tmakinen/puppet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Added Ubuntu support for ldap::auth.

Browse source
This commit is contained in:
Timo Mkinen 2010-12-29 16:30:21 +02:00
parent 4e2ae27047
commit 031eb802bd
1 changed files with 38 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

42
ldap/manifests/init.pp
View file

@ -14,9 +14,10 @@
#
class ldap::auth inherits ldap::client {
$ldap_uri = inline_template('<%= ldap_server.join(" ") -%>')
case $operatingsystem {
CentOS: {
$ldap_uri = inline_template('<%= ldap_server.join(" ") -%>')
package { "nss_ldap":
ensure => installed,
}
@ -27,10 +28,43 @@ class ldap::auth inherits ldap::client {
File["/etc/openldap/ldap.conf"], ],
require => Package["nss_ldap"],
}
augeas { "enable-ldap-ssl":
augeas { "pam-ldap-conf":
context => "/files/etc/ldap.conf",
changes => "set ssl on",
onlyif => "get ssl != on",
changes => [ "set nss_paged_results yes",
"set pam_password exop",
"set ssl on", ],
onlyif => [ "get nss_paged_results != yes",
"get pam_password != exop",
"get ssl != on", ],
}
}
Ubuntu: {
package { "ldap-auth-client":
ensure => installed,
}
exec { "auth-client-config -t nss -p lac_ldap":
path => "/bin:/usr/bin:/sbin:/usr/sbin",
unless => "auth-client-config -t nss -p lac_ldap -s",
require => Package["ldap-auth-client"],
before => Augeas["pam-ldap-conf"],
notify => Exec["nssldap-update-ignoreusers"],
}
exec { "nssldap-update-ignoreusers":
path => "/bin:/usr/bin:/sbin:/usr/sbin",
refreshonly => true,
}
augeas { "pam-ldap-conf":
context => "/files/etc/ldap.conf",
changes => [ "set uri '${ldap_uri}'",
"set base ${ldap_basedn}",
"set nss_paged_results yes",
"set pam_password exop",
"set ssl on", ],
onlyif => [ "get uri != '${ldap_uri}'",
"get base != ${ldap_basedn}",
"get nss_paged_results != yes",
"get pam_password != exop",
"get ssl != on", ],
}
}
OpenBSD: {