dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Configuration update

Browse Source
This commit is contained in:
Xavier Guimard 2010-10-29 08:54:38 +00:00
parent 78b9b08d1f
commit 52dbcc868d
9 changed files with 431 additions and 34 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
build/lemonldap-ng/Makefile
View File

@ -496,6 +496,7 @@ static_example:
@$(MAKE) sub_static_example LMPREFIX=$(EXAMPLEROOT)
documentation:
@rm -f doc/pages/documentation/latest
@cd doc/ && ../scripts/doc.pl
@rm -rf doc/pages/documentation/latest
@ln -s $$(perl -e '$$h{sprintf("%03d\.%03d\.%03d",split/\./,$$_)}=$$_ foreach(@ARGV); \

2
build/lemonldap-ng/doc/index/alphabetical.html
View File

@ -16,4 +16,4 @@
</head>
<body>
<div class="dokuwiki export"><h1>Alphabetical Index</h1><div class="level2"><p>A&nbsp;B&nbsp;<a href="#c">C</a>&nbsp;<a href="#d">D</a>&nbsp;<a href="#e">E</a>&nbsp;F&nbsp;G&nbsp;H&nbsp;<a href="#i">I</a>&nbsp;J&nbsp;K&nbsp;<a href="#l">L</a>&nbsp;<a href="#m">M</a>&nbsp;N&nbsp;O&nbsp;<a href="#p">P</a>&nbsp;<a href="#q">Q</a>&nbsp;<a href="#r">R</a>&nbsp;<a href="#s">S</a>&nbsp;T&nbsp;<a href="#u">U</a>&nbsp;V&nbsp;W&nbsp;X&nbsp;Y&nbsp;Z&nbsp;</p><p><a href="../index.html" class="wikilink1" title="Back to main index">Back to main index</a></p></div><div></div><a name="c"></a><h2>C</h2><div class="level2"><a href="../pages/documentation/conferences.html" class="wikilink1">conferences</a><br /><a href="../pages/documentation/1.0/configlocation.html" class="wikilink1">configlocation</a><br /><a href="../pages/documentation/1.0/configvhost.html" class="wikilink1">configvhost</a><br /><a href="../pages/contact.html" class="wikilink1">contact</a><br /></div><a name="d"></a><h2>D</h2><div class="level2"><a href="../pages/default_sidebar.html" class="wikilink1">default_sidebar</a><br /><a href="../pages/documentation.html" class="wikilink1">documentation</a><br /><a href="../pages/wiki/dokuwiki.html" class="wikilink1">dokuwiki</a><br /><a href="../pages/download.html" class="wikilink1">download</a><br /></div><a name="e"></a><h2>E</h2><div class="level2"><a href="../pages/documentation/1.0/error.html" class="wikilink1">error</a><br /></div><a name="i"></a><h2>I</h2><div class="level2"><a href="../pages/documentation/1.0/installdeb.html" class="wikilink1">installdeb</a><br /><a href="../pages/documentation/1.0/installrpm.html" class="wikilink1">installrpm</a><br /><a href="../pages/documentation/1.0/installtarball.html" class="wikilink1">installtarball</a><br /></div><a name="l"></a><h2>L</h2><div class="level2"><a href="../pages/documentation/1.0/logs.html" class="wikilink1">logs</a><br /></div><a name="m"></a><h2>M</h2><div class="level2"><a href="../pages/menu1.html" class="wikilink1">menu1</a><br /></div><a name="p"></a><h2>P</h2><div class="level2"><a href="../pages/documentation/1.0/parameterlist.html" class="wikilink1">parameterlist</a><br /><a href="../pages/playground/playground.html" class="wikilink1">playground</a><br /><a href="../pages/documentation/1.0/portalcustom.html" class="wikilink1">portalcustom</a><br /><a href="../pages/documentation/1.0/portalmenu.html" class="wikilink1">portalmenu</a><br /><a href="../pages/documentation/1.0/prereq.html" class="wikilink1">prereq</a><br /><a href="../pages/documentation/presentation.html" class="wikilink1">presentation</a><br /></div><a name="q"></a><h2>Q</h2><div class="level2"><a href="../pages/documentation/quickstart.html" class="wikilink1">quickstart</a><br /></div><a name="r"></a><h2>R</h2><div class="level2"><a href="../pages/documentation/1.0/redirections.html" class="wikilink1">redirections</a><br /><a href="../pages/references.html" class="wikilink1">references</a><br /></div><a name="s"></a><h2>S</h2><div class="level2"><a href="../pages/screenshots.html" class="wikilink1">screenshots</a><br /><a href="../pages/documentation/1.0/ssocookie.html" class="wikilink1">ssocookie</a><br /><a href="../pages/start.html" class="wikilink1">start</a><br /><a href="../pages/documentation/1.0/status.html" class="wikilink1">status</a><br /><a href="../pages/wiki/syntax.html" class="wikilink1">syntax</a><br /></div><a name="u"></a><h2>U</h2><div class="level2"><a href="../pages/documentation/1.0/upgrade.html" class="wikilink1">upgrade</a><br /></div><br /><br /><hr /><div class="level2"><p><a href="../index.html" class="wikilink1" title="Back to main index">Back to main index</a></p></div>
<div class="dokuwiki export"><h1>Alphabetical Index</h1><div class="level2"><p>A&nbsp;B&nbsp;<a href="#c">C</a>&nbsp;<a href="#d">D</a>&nbsp;<a href="#e">E</a>&nbsp;<a href="#f">F</a>&nbsp;G&nbsp;H&nbsp;<a href="#i">I</a>&nbsp;J&nbsp;K&nbsp;<a href="#l">L</a>&nbsp;<a href="#m">M</a>&nbsp;N&nbsp;O&nbsp;<a href="#p">P</a>&nbsp;<a href="#q">Q</a>&nbsp;<a href="#r">R</a>&nbsp;<a href="#s">S</a>&nbsp;T&nbsp;<a href="#u">U</a>&nbsp;V&nbsp;W&nbsp;X&nbsp;Y&nbsp;Z&nbsp;</p><p><a href="../index.html" class="wikilink1" title="Back to main index">Back to main index</a></p></div><div></div><a name="c"></a><h2>C</h2><div class="level2"><a href="../pages/documentation/1.0/changeconfbackend.html" class="wikilink1">changeconfbackend</a><br /><a href="../pages/documentation/conferences.html" class="wikilink1">conferences</a><br /><a href="../pages/documentation/1.0/configlocation.html" class="wikilink1">configlocation</a><br /><a href="../pages/documentation/1.0/configvhost.html" class="wikilink1">configvhost</a><br /><a href="../pages/contact.html" class="wikilink1">contact</a><br /></div><a name="d"></a><h2>D</h2><div class="level2"><a href="../pages/default_sidebar.html" class="wikilink1">default_sidebar</a><br /><a href="../pages/documentation.html" class="wikilink1">documentation</a><br /><a href="../pages/wiki/dokuwiki.html" class="wikilink1">dokuwiki</a><br /><a href="../pages/download.html" class="wikilink1">download</a><br /></div><a name="e"></a><h2>E</h2><div class="level2"><a href="../pages/documentation/1.0/error.html" class="wikilink1">error</a><br /></div><a name="f"></a><h2>F</h2><div class="level2"><a href="../pages/documentation/1.0/fileconfbackend.html" class="wikilink1">fileconfbackend</a><br /></div><a name="i"></a><h2>I</h2><div class="level2"><a href="../pages/documentation/1.0/installdeb.html" class="wikilink1">installdeb</a><br /><a href="../pages/documentation/1.0/installrpm.html" class="wikilink1">installrpm</a><br /><a href="../pages/documentation/1.0/installtarball.html" class="wikilink1">installtarball</a><br /></div><a name="l"></a><h2>L</h2><div class="level2"><a href="../pages/documentation/1.0/logs.html" class="wikilink1">logs</a><br /></div><a name="m"></a><h2>M</h2><div class="level2"><a href="../pages/menu1.html" class="wikilink1">menu1</a><br /></div><a name="p"></a><h2>P</h2><div class="level2"><a href="../pages/documentation/1.0/parameterlist.html" class="wikilink1">parameterlist</a><br /><a href="../pages/playground/playground.html" class="wikilink1">playground</a><br /><a href="../pages/documentation/1.0/portalcustom.html" class="wikilink1">portalcustom</a><br /><a href="../pages/documentation/1.0/portalmenu.html" class="wikilink1">portalmenu</a><br /><a href="../pages/documentation/1.0/prereq.html" class="wikilink1">prereq</a><br /><a href="../pages/documentation/presentation.html" class="wikilink1">presentation</a><br /></div><a name="q"></a><h2>Q</h2><div class="level2"><a href="../pages/documentation/quickstart.html" class="wikilink1">quickstart</a><br /></div><a name="r"></a><h2>R</h2><div class="level2"><a href="../pages/documentation/1.0/redirections.html" class="wikilink1">redirections</a><br /><a href="../pages/references.html" class="wikilink1">references</a><br /></div><a name="s"></a><h2>S</h2><div class="level2"><a href="../pages/screenshots.html" class="wikilink1">screenshots</a><br /><a href="../pages/documentation/1.0/soapconfbackend.html" class="wikilink1">soapconfbackend</a><br /><a href="../pages/documentation/1.0/sqlconfbackend.html" class="wikilink1">sqlconfbackend</a><br /><a href="../pages/documentation/1.0/ssocookie.html" class="wikilink1">ssocookie</a><br /><a href="../pages/start.html" class="wikilink1">start</a><br /><a href="../pages/documentation/1.0/status.html" class="wikilink1">status</a><br /><a href="../pages/wiki/syntax.html" class="wikilink1">syntax</a><br /></div><a name="u"></a><h2>U</h2><div class="level2"><a href="../pages/documentation/1.0/upgrade.html" class="wikilink1">upgrade</a><br /></div><br /><br /><hr /><div class="level2"><p><a href="../index.html" class="wikilink1" title="Back to main index">Back to main index</a></p></div>

70
build/lemonldap-ng/doc/pages/documentation/1.0/changeconfbackend.html Normal file
View File

@ -0,0 +1,70 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"
lang="en" dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
<!-- metadata -->
<meta name="generator" content="Offline" />
<meta name="version" content="Offline 0.1" />
<!-- style sheet links -->
<link rel="stylesheet" media="all" type="text/css" href="../../../css/all.css" />
<link rel="stylesheet" media="screen" type="text/css" href="../../../css/screen.css" />
<link rel="stylesheet" media="print" type="text/css" href="../../../css/print.css" />
</head>
<body>
<div class="dokuwiki export">
<h1><a name="how_to_change_configuration_backend" id="how_to_change_configuration_backend">How to change configuration backend</a></h1>
<div class="level1">
<p>
Lemonldap::NG provides a script to change configuration backend easily keeping history. It is set in Lemonldap::NG utilities directory (<strong>convertConfig</strong>).
</p>
</div>
<!-- SECTION "How to change configuration backend" [1-208] -->
<h2><a name="how_it_works" id="how_it_works">How it works</a></h2>
<div class="level2">
<p>
The <strong>convertConfig</strong> utility reads 2 Lemonldap configuration files <em>(lemonldap-ng.ini)</em>:
</p>
<ul>
<li class="level1"><div class="li"> the current : to extract all configuration history</div>
</li>
<li class="level1"><div class="li"> the new : to write all configuration history</div>
</li>
</ul>
</div>
<!-- SECTION "How it works" [209-431] -->
<h2><a name="let_s_go" id="let_s_go">Let&#039;s go</a></h2>
<div class="level2">
<ul>
<li class="level1"><div class="li"> Prepare your new lemonldap-ng.ini file</div>
</li>
<li class="level1"><div class="li"> Configure your new backend (create <acronym title="Structured Query Language">SQL</acronym> database,…)</div>
</li>
<li class="level1"><div class="li"> Launch that:</div>
</li>
</ul>
<pre class="code shell">convertConfig --current=/etc/lemonldap-ng/lemonldap-ng.ini --new=/new/lemonldap-ng.ini</pre>
<ul>
<li class="level1"><div class="li"> Install the new lemonldap-ng.ini file in all Lemonldap::NG components</div>
</li>
<li class="level1"><div class="li"> Restart all your Apache servers</div>
</li>
</ul>
</div>
<!-- SECTION "Let's go" [432-] --></div><!-- closes <div class="dokuwiki export">-->

43
build/lemonldap-ng/doc/pages/documentation/1.0/configlocation.html
View File

@ -36,7 +36,18 @@ LemonLDAP::NG configuration is stored in a backend (File, database, …), that a
</p>
<p>
<p><div class="notetip">Detailled configuration backends documentation is available <a href="../../documentation/1.0/start.html#configuration1" class="wikilink1" title="documentation:1.0:start">here</a>.
<p><div class="noteimportant">Note that all Lemonldap::NG components must have access :
</p>
<ul>
<li class="level1"><div class="li"> to the configuration backend</div>
</li>
<li class="level1"><div class="li"> to the sessions storage backend</div>
</li>
</ul>
<p>
Detailled configuration backends documentation is available <a href="../../documentation/1.0/start.html#configuration1" class="wikilink1" title="documentation:1.0:start">here</a>.
</div></p>
</p>
@ -56,7 +67,7 @@ For example, to configure the <code>File</code> configuration backend:
<span class="re1">dirName</span> <span class="sy0">=</span><span class="re2"> /usr/local/lemonldap-ng/data/conf</span></pre>
</div>
<!-- SECTION "Backends" [39-749] -->
<!-- SECTION "Backends" [39-883] -->
<h2><a name="manager" id="manager">Manager</a></h2>
<div class="level2">
@ -76,7 +87,11 @@ By default, Manager is protected to allow only localhost. This can be changed in
&lt;/<span class="kw3">Directory</span>&gt;</pre>
<p>
<p><div class="notetip">You can change allowed <acronym title="Internet Protocol">IP</acronym>, or add an Apache authentication module. When LemonLDAP::NG will be fully configured, you can also protect Manager with the Handler, as any other web application.
<p><div class="notetip">You can change allowed <acronym title="Internet Protocol">IP</acronym>, or add an Apache authentication module. When LemonLDAP::NG will be fully configured.
</p>
<p>
You can also protect Manager with Lemonldap::NG itself, as any other web application: set “protection=manager” in lemonldap-ng.ini configuration file (section manager)
</div></p>
</p>
@ -108,12 +123,12 @@ When modifying a value, always click on the <code>Apply</code> button if availab
</p>
<p>
<p><div class="notewarning">LemonLDAP::NG will do some checks on configuration and display errors if any. Configuration <strong>is not saved</strong> if errors occur.
<p><div class="notewarning">LemonLDAP::NG will do some checks on configuration and display errors and warnings if any. Configuration <strong>is not saved</strong> if errors occur.
</div></p>
</p>
</div>
<!-- SECTION "Manager" [750-2274] -->
<!-- SECTION "Manager" [884-2513] -->
<h2><a name="apache" id="apache">Apache</a></h2>
<div class="level2">
@ -146,7 +161,7 @@ These files must be included in Apache configuration, either with <code>Include<
</p>
</div>
<!-- SECTION "Apache" [2275-3034] -->
<!-- SECTION "Apache" [2514-3273] -->
<h3><a name="portal" id="portal">Portal</a></h3>
<div class="level3">
@ -245,7 +260,7 @@ In Portal virtual host, you will find several configuration parts:
&lt;/Perl&gt;</pre>
</div>
<!-- SECTION "Portal" [3035-5628] -->
<!-- SECTION "Portal" [3274-5867] -->
<h3><a name="manager1" id="manager1">Manager</a></h3>
<div class="level3">
@ -276,7 +291,7 @@ Manager virtual host is used to serve configuration interface and local document
&lt;/<span class="kw3">Directory</span>&gt;</pre>
</div>
<!-- SECTION "Manager" [5629-6274] -->
<!-- SECTION "Manager" [5868-6513] -->
<h3><a name="handler" id="handler">Handler</a></h3>
<div class="level3">
<ul>
@ -330,7 +345,7 @@ Then, to protect a standard virutal host, the only configuration line to add is:
<pre class="code file apache">PerlHeaderParserHandler My::Package</pre>
</div>
<!-- SECTION "Handler" [6275-7490] -->
<!-- SECTION "Handler" [6514-7729] -->
<h2><a name="configuration_reload" id="configuration_reload">Configuration reload</a></h2>
<div class="level2">
@ -375,7 +390,7 @@ The <code>reload</code> target is managed in Apache configuration, inside a virt
</p>
</div>
<!-- SECTION "Configuration reload" [7491-8767] -->
<!-- SECTION "Configuration reload" [7730-9006] -->
<h2><a name="local_file" id="local_file">Local file</a></h2>
<div class="level2">
@ -415,7 +430,7 @@ For example, to override configured skin for portal:
</p>
</div>
<!-- SECTION "Local file" [8768-9625] -->
<!-- SECTION "Local file" [9007-9864] -->
<h2><a name="script_files" id="script_files">Script files</a></h2>
<div class="level2">
@ -430,7 +445,7 @@ LemonLDAP::NG allows to override any configuration parameter directly in script
</p>
</div>
<!-- SECTION "Script files" [9626-10014] -->
<!-- SECTION "Script files" [9865-10253] -->
<h3><a name="portal1" id="portal1">Portal</a></h3>
<div class="level3">
@ -445,7 +460,7 @@ For example, in portal/index.pl:
<span class="br0">&#41;</span><span class="sy0">;</span></pre>
</div>
<!-- SECTION "Portal" [10015-10185] -->
<!-- SECTION "Portal" [10254-10424] -->
<h3><a name="handler1" id="handler1">Handler</a></h3>
<div class="level3">
@ -460,4 +475,4 @@ For example, in handler/MyHandler.pm:
<span class="br0">&#41;</span><span class="sy0">;</span></pre>
</div>
<!-- SECTION "Handler" [10186-] --></div><!-- closes <div class="dokuwiki export">-->
<!-- SECTION "Handler" [10425-] --></div><!-- closes <div class="dokuwiki export">-->

62
build/lemonldap-ng/doc/pages/documentation/1.0/fileconfbackend.html Normal file
View File

@ -0,0 +1,62 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"
lang="en" dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
<!-- metadata -->
<meta name="generator" content="Offline" />
<meta name="version" content="Offline 0.1" />
<!-- style sheet links -->
<link rel="stylesheet" media="all" type="text/css" href="../../../css/all.css" />
<link rel="stylesheet" media="screen" type="text/css" href="../../../css/screen.css" />
<link rel="stylesheet" media="print" type="text/css" href="../../../css/print.css" />
</head>
<body>
<div class="dokuwiki export">
<h1><a name="file_configuration_backend" id="file_configuration_backend">File configuration backend</a></h1>
<div class="level1">
<p>
This is the default configuration backend. Datas are stored as key/values (no-strings values are serialized).
</p>
<p>
<p><div class="notetip">This configuration storage can be shared between different hosts using:
</p>
<ul>
<li class="level1"><div class="li"> <a href="../../documentation/1.0/soapconfbackend.html" class="wikilink1" title="documentation:1.0:soapconfbackend">SOAP configuration backend proxy</a></div>
</li>
<li class="level1"><div class="li"> any files sharing system (NFS, NAS, SAN,…)</div>
</li>
</ul>
<p>
</div></p>
</p>
</div>
<!-- SECTION "File configuration backend" [1-350] -->
<h2><a name="configuration" id="configuration">Configuration</a></h2>
<div class="level2">
<p>
You just have to configure a directory writable by Apache user and set it in [configuration] section in your lemonldap-ng.ini file
</p>
<pre class="code shell">[configuration]
type = File
dirName = /var/lib/lemonldap-ng/conf</pre>
</div>
<!-- SECTION "Configuration" [351-] --></div><!-- closes <div class="dokuwiki export">-->

29
build/lemonldap-ng/doc/pages/documentation/1.0/installdeb.html
View File

@ -101,11 +101,34 @@ Then:
</li>
<li class="level1"><div class="li"> All static content (examples, <acronym title="Cascading Style Sheets">CSS</acronym>, images, etc.) is in /usr/share/lemonldap-ng/</div>
</li>
<li class="level1"><div class="li"> Apache configuration files are in /etc/lemonldap-ng and linked in /etc/apache2/sites-available</div>
</li>
</ul>
</div>
<!-- SECTION "File location" [910-1265] -->
<h2><a name="change_default_dns_domain" id="change_default_dns_domain">Change default DNS domain</a></h2>
<!-- SECTION "File location" [910-1364] -->
<h2><a name="enable_lemonldapng" id="enable_lemonldapng">Enable Lemonldap::NG</a></h2>
<div class="level2">
<ul>
<li class="level1"><div class="li"> Enable Lemonldap::NG sites :</div>
</li>
</ul>
<pre class="code shell"># a2ensite portal-apache2.conf
# a2ensite manager-apache2.conf
# /etc/init.d/apache2 restart</pre>
<ul>
<li class="level1"><div class="li"> Configure your <acronym title="Domain Name System">DNS</acronym> server or for tests with example.com, lauch the following :</div>
</li>
</ul>
<pre class="code shell"># cat /etc/lemonldap-ng/for_etc_hosts &gt;&gt; /etc/hosts</pre>
<p>
Follow the <a href="../../documentation/1.0/start.html#configuration" class="wikilink1" title="documentation:1.0:start">next steps</a>
</p>
</div>
<!-- SECTION "Enable Lemonldap::NG" [1365-1749] -->
<h2><a name="tips_to_change_default_dns_domain" id="tips_to_change_default_dns_domain">Tips to change default DNS domain</a></h2>
<div class="level2">
<p>
@ -115,4 +138,4 @@ By default, <acronym title="Domain Name System">DNS</acronym> domain is <code>ex
<pre class="code shell"># sed -i 's/example\.com/ow2.org/g' /etc/lemonldap-ng/* /var/lib/lemonldap-ng/conf/* /var/lib/lemonldap-ng/test/*</pre>
</div>
<!-- SECTION "Change default DNS domain" [1266-] --></div><!-- closes <div class="dokuwiki export">-->
<!-- SECTION "Tips to change default DNS domain" [1750-] --></div><!-- closes <div class="dokuwiki export">-->

86
build/lemonldap-ng/doc/pages/documentation/1.0/soapconfbackend.html Normal file
View File

@ -0,0 +1,86 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"
lang="en" dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
<!-- metadata -->
<meta name="generator" content="Offline" />
<meta name="version" content="Offline 0.1" />
<!-- style sheet links -->
<link rel="stylesheet" media="all" type="text/css" href="../../../css/all.css" />
<link rel="stylesheet" media="screen" type="text/css" href="../../../css/screen.css" />
<link rel="stylesheet" media="print" type="text/css" href="../../../css/print.css" />
</head>
<body>
<div class="dokuwiki export">
<h1><a name="soap_configuration_backend" id="soap_configuration_backend">SOAP configuration backend</a></h1>
<div class="level1">
<p>
You can share your configuration over the network using <acronym title="Simple Object Access Protocol">SOAP</acronym> proxy system.
</p>
<p>
<p><div class="notetip">Note that <acronym title="Simple Object Access Protocol">SOAP</acronym> is not a real configuration backend, but just a proxy system to access to your configuration over the network
</div></p>
</p>
</div>
<!-- SECTION "SOAP configuration backend" [1-261] -->
<h2><a name="configuration" id="configuration">Configuration</a></h2>
<div class="level2">
</div>
<!-- SECTION "Configuration" [262-288] -->
<h3><a name="first_configure_your_real_backend" id="first_configure_your_real_backend">First, configure your real backend</a></h3>
<div class="level3">
<ul>
<li class="level1"><div class="li"> On your main server, configure a <a href="../../documentation/1.0/fileconfbackend.html" class="wikilink1" title="documentation:1.0:fileconfbackend">File</a>, <a href="../../documentation/1.0/sqlconfbackend.html" class="wikilink1" title="documentation:1.0:sqlconfbackend">SQL</a> or <a href="../../documentation/1.0/ldapconfbackend.html" class="wikilink2" title="documentation:1.0:ldapconfbackend" rel="nofollow">LDAP</a> backend</div>
</li>
<li class="level1"><div class="li"> Set <acronym title="Simple Object Access Protocol">SOAP</acronym> parameter to true in the configuration using the manager: the portal will become a <acronym title="Simple Object Access Protocol">SOAP</acronym> server</div>
</li>
<li class="level1"><div class="li"> Configure Apache to allow remote access: in portalApache2.conf, remote <acronym title="Simple Object Access Protocol">SOAP</acronym> access is disabled by default. Change it:</div>
</li>
</ul>
<pre class="code shell"># SOAP functions for sessions access (disabled by default)
&lt;Directory /var/lib/lemonldap-ng/portal/index.pl/sessions&gt;
Order deny,allow
Deny from all
Allow from 192.168.2.0/24
&lt;/Directory&gt;</pre>
</div>
<!-- SECTION "First, configure your real backend" [289-962] -->
<h3><a name="next_configure_soap_for_your_remote_servers" id="next_configure_soap_for_your_remote_servers">Next, configure SOAP for your remote servers</a></h3>
<div class="level3">
<p>
Change configuration in lemonldap-ng.ini :
</p>
<pre class="code shell">type = SOAP
proxy = https://auth.example.com/index.pl/config</pre>
<p>
You can also add some other parameters
</p>
<pre class="code shell">User = lemonldap
Password = mypassword
# LWP::UserAgent parameters
proxyOptions = { timeout =&gt; 5 }</pre>
</div>
<!-- SECTION "Next, configure SOAP for your remote servers" [963-] --></div><!-- closes <div class="dokuwiki export">-->

138
build/lemonldap-ng/doc/pages/documentation/1.0/sqlconfbackend.html Normal file
View File

@ -0,0 +1,138 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"
lang="en" dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
<!-- metadata -->
<meta name="generator" content="Offline" />
<meta name="version" content="Offline 0.1" />
<!-- style sheet links -->
<link rel="stylesheet" media="all" type="text/css" href="../../../css/all.css" />
<link rel="stylesheet" media="screen" type="text/css" href="../../../css/screen.css" />
<link rel="stylesheet" media="print" type="text/css" href="../../../css/print.css" />
</head>
<body>
<div class="dokuwiki export">
<h1><a name="sql_configuration_backends" id="sql_configuration_backends">SQL configuration backends</a></h1>
<div class="level1">
<p>
There is 3 types of <acronym title="Structured Query Language">SQL</acronym> configuration backends for LemonLDAP::NG :
</p>
<ul>
<li class="level1"><div class="li"> <strong>CDBI</strong> : very simple storage</div>
</li>
<li class="level1"><div class="li"> <strong>RDBI</strong> : triple store storage</div>
</li>
<li class="level1"><div class="li"> <strong><acronym title="Database Interface">DBI</acronym></strong> which has been deprecated: it is a read-only backend that exists just for compatibility with older versions of LemonLDAP::NG. See <a href="../../documentation/1.0/changeconfbackend.html" class="wikilink1" title="documentation:1.0:changeconfbackend">how to change configuration backend</a>.</div>
</li>
</ul>
</div>
<!-- SECTION "SQL configuration backends" [1-382] -->
<h2><a name="lemonldap-ngini_parameters" id="lemonldap-ngini_parameters">Lemonldap-ng.ini parameters</a></h2>
<div class="level2">
<p>
To use a <acronym title="Structured Query Language">SQL</acronym> backend, configure your <code>lemonldap-ng.ini</code> file (section configuration) :
</p>
<ul>
<li class="level1"><div class="li"> Choose <acronym title="Database Interface">DBI</acronym> type (RDBI, CDBI or <acronym title="Database Interface">DBI</acronym>)</div>
</li>
<li class="level1"><div class="li"> Configure the connection string (see <a href="http://search.cpan.org/perldoc?DBI" class="urlextern" title="http://search.cpan.org/perldoc?DBI" rel="nofollow">DBI manual page</a>)</div>
</li>
<li class="level1"><div class="li"> Configure user and password</div>
</li>
<li class="level1"><div class="li"> If your table is not named lmConfig, set it&#039;s name in <code>dbiTable</code> parameter.</div>
</li>
</ul>
<p>
Example for MySQL :
</p>
<pre class="code ini"><span class="re0"><span class="br0">&#91;</span>configuration<span class="br0">&#93;</span></span>
<span class="re1">type</span> <span class="sy0">=</span><span class="re2"> RDBI</span>
<span class="re1">dbiChain</span> <span class="sy0">=</span><span class="re2"> DBI:mysql:database=lemonldap-ng</span><span class="co0">;host=1.2.3.4</span>
<span class="re1">dbiUser</span> <span class="sy0">=</span><span class="re2"> lemonldap</span>
<span class="re1">dbiPassword</span> <span class="sy0">=</span><span class="re2"> password</span>
<span class="co0">; optional</span>
<span class="re1">dbiTable</span> <span class="sy0">=</span><span class="re2"> mytablename</span></pre>
</div>
<!-- SECTION "Lemonldap-ng.ini parameters" [383-974] -->
<h2><a name="configure_your_sql_database" id="configure_your_sql_database">Configure your SQL database</a></h2>
<div class="level2">
</div>
<!-- SECTION "Configure your SQL database" [975-1015] -->
<h3><a name="sql_configuration" id="sql_configuration">SQL configuration</a></h3>
<div class="level3">
</div>
<h4><a name="rdbi" id="rdbi">RDBI</a></h4>
<div class="level4">
<pre class="code sql"><span class="kw1">CREATE</span> <span class="kw1">TABLE</span> lmConfig <span class="br0">&#40;</span>
cfgNum int<span class="br0">&#40;</span>11<span class="br0">&#41;</span> <span class="kw1">NOT</span> <span class="kw1">NULL</span><span class="sy0">,</span>
<span class="kw1">FIELD</span> varchar<span class="br0">&#40;</span>255<span class="br0">&#41;</span> <span class="kw1">NOT</span> <span class="kw1">NULL</span> <span class="kw1">DEFAULT</span> <span class="st0">''</span><span class="sy0">,</span>
value longblob<span class="sy0">,</span>
<span class="kw1">PRIMARY</span> <span class="kw1">KEY</span> <span class="br0">&#40;</span>cfgNum<span class="sy0">,</span><span class="kw1">FIELD</span><span class="br0">&#41;</span>
<span class="br0">&#41;</span>;</pre>
</div>
<h4><a name="cdbi" id="cdbi">CDBI</a></h4>
<div class="level4">
<pre class="code sql"><span class="kw1">CREATE</span> <span class="kw1">TABLE</span> lmConfig <span class="br0">&#40;</span>
cfgNum int <span class="kw1">NOT</span> <span class="kw1">NULL</span> <span class="kw1">PRIMARY</span> <span class="kw1">KEY</span><span class="sy0">,</span>
<span class="kw1">DATA</span> longblob
<span class="br0">&#41;</span>;</pre>
</div>
<!-- SECTION "SQL configuration" [1016-1349] -->
<h3><a name="grant_lemonldapng_access" id="grant_lemonldapng_access">Grant LemonLDAP::NG access</a></h3>
<div class="level3">
<p>
You have to grant read/write access for the manager component. Other components needs just a read access. You can also use the same user for all.
</p>
<p>
<p><div class="notetip">You can use different dbiUser strings :
</p>
<ul>
<li class="level1"><div class="li"> one with read/write rights for servers hosting the manager</div>
</li>
<li class="level1"><div class="li"> one with just read rights for other servers</div>
</li>
</ul>
<p>
</div></p>
</p>
<p>
MySQL example (suppose that our servers are in 10.0.0.0/24 network):
</p>
<pre class="code sql"><span class="kw1">GRANT</span> <span class="kw1">SELECT</span><span class="sy0">,</span><span class="kw1">INSERT</span><span class="sy0">,</span><span class="kw1">UPDATE</span><span class="sy0">,</span><span class="kw1">LOCK</span> <span class="kw1">TABLES</span> <span class="kw1">ON</span> lmConfig<span class="sy0">.*</span>
<span class="kw1">TO</span> lemonldap<span class="sy0">-</span>ng@manager<span class="sy0">.</span>host <span class="kw1">IDENTIFIED</span> <span class="kw1">BY</span> <span class="st0">'mypassword'</span>;
<span class="kw1">GRANT</span> <span class="kw1">SELECT</span> <span class="kw1">ON</span> lmConfig<span class="sy0">.*</span>
<span class="kw1">TO</span> lemonldap<span class="sy0">-</span>ng<span class="sy0">-</span>user@<span class="st0">'10.0.0.%'</span> <span class="kw1">IDENTIFIED</span> <span class="kw1">BY</span> <span class="st0">'myotherpassword'</span>;</pre>
</div>
<!-- SECTION "Grant LemonLDAP::NG access" [1350-] --></div><!-- closes <div class="dokuwiki export">-->

34
build/lemonldap-ng/doc/pages/documentation/1.0/start.html
View File

@ -128,21 +128,23 @@
<p>
<a href="/_detail/icons/utilities.png?id=documentation%3A1.0%3Astart" class="media" title="icons:utilities.png"><img src="../../../media/icons/utilities.png" class="medialeft" align="left" alt="" /></a>
</p>
<p>
<br/>
<br/>
<br/>
<br/>
</p>
<ul>
<li class="level1"><div class="li"> <a href="../../documentation/1.0/changeconfbackend.html" class="wikilink1" title="documentation:1.0:changeconfbackend">Change configuration backend</a></div>
</li>
<li class="level1"><div class="li"> <a href="../../documentation/1.0/fileconfbackend.html" class="wikilink1" title="documentation:1.0:fileconfbackend">File configuration backend</a></div>
</li>
<li class="level1"><div class="li"> <a href="../../documentation/1.0/sqlconfbackend.html" class="wikilink1" title="documentation:1.0:sqlconfbackend">SQL configuration backend (called RDBI or CDBI)</a></div>
</li>
<li class="level1"><div class="li"> <a href="../../documentation/1.0/ldapconfbackend.html" class="wikilink2" title="documentation:1.0:ldapconfbackend" rel="nofollow">LDAP configuration backend</a></div>
</li>
<li class="level1"><div class="li"> <a href="../../documentation/1.0/soapconfbackend.html" class="wikilink1" title="documentation:1.0:soapconfbackend">SOAP configuration backend</a></div>
</li>
</ul>
</div>
<!-- SECTION "Configuration" [866-931] -->
<!-- SECTION "Configuration" [866-1198] -->
<h3><a name="sessions" id="sessions">Sessions</a></h3>
<div class="level3">
@ -163,7 +165,7 @@
</p>
</div>
<!-- SECTION "Sessions" [932-992] -->
<!-- SECTION "Sessions" [1199-1259] -->
<h3><a name="identity_provider" id="identity_provider">Identity provider</a></h3>
<div class="level3">
@ -184,7 +186,7 @@
</p>
</div>
<!-- SECTION "Identity provider" [993-1061] -->
<!-- SECTION "Identity provider" [1260-1328] -->
<h2><a name="applications_protection" id="applications_protection">Applications protection</a></h2>
<div class="level2">
@ -205,7 +207,7 @@
</p>
</div>
<!-- SECTION "Applications protection" [1062-1136] -->
<!-- SECTION "Applications protection" [1329-1403] -->
<h2><a name="advanced_features" id="advanced_features">Advanced features</a></h2>
<div class="level2">
@ -226,7 +228,7 @@
</p>
</div>
<!-- SECTION "Advanced features" [1137-1205] -->
<!-- SECTION "Advanced features" [1404-1472] -->
<h2><a name="exploitation" id="exploitation">Exploitation</a></h2>
<div class="level2">
@ -245,4 +247,4 @@
</ul>
</div>
<!-- SECTION "Exploitation" [1206-] --></div><!-- closes <div class="dokuwiki export">-->
<!-- SECTION "Exploitation" [1473-] --></div><!-- closes <div class="dokuwiki export">-->