forked from Deuxfleurs/infrastructure
778 B
778 B
1. Create a LDAP user and assign a password for your service
Go to guichet.deuxfleurs.fr
- Everything takes place in
ou=services,ou=users,dc=deuxfleurs,dc=fr
- Create a new user, like
johny
- Generate a random password with
openssl rand -base64 32
- Hash it with
slappasswd
- Add a
userpassword
entry with the hash
This step can also be done using the automated tool secretmgr.py
in the app folder.
2. Connect to postgres with the admin users
# 1. Launch ssh tunnel given in the README
# 2. Make sure you have postregsql client installed locally
psql -h localhost -U postgres -W postgres
3. Create the binded users with LDAP in postgres + the database
CREATE USER johny;
CREATE DATABASE amazingapp OWNER johny;