2020-09-21 14:29:49 +00:00
|
|
|
## 1. Create a LDAP user and assign a password for your service
|
|
|
|
|
|
|
|
Go to guichet.deuxfleurs.fr
|
|
|
|
|
|
|
|
1. Everything takes place in `ou=services,ou=users,dc=deuxfleurs,dc=fr`
|
|
|
|
2. Create a new user, like `johny`
|
|
|
|
3. Generate a random password with `openssl rand -base64 32`
|
|
|
|
4. Hash it with `slappasswd`
|
|
|
|
5. Add a `userpassword` entry with the hash
|
|
|
|
|
2021-01-19 16:29:37 +00:00
|
|
|
This step can also be done using the automated tool `secretmgr.py` in the app folder.
|
|
|
|
|
2020-09-21 14:29:49 +00:00
|
|
|
## 2. Connect to postgres with the admin users
|
|
|
|
|
2019-06-01 14:02:49 +00:00
|
|
|
```bash
|
2020-09-21 14:29:49 +00:00
|
|
|
# 1. Launch ssh tunnel given in the README
|
|
|
|
# 2. Make sure you have postregsql client installed locally
|
|
|
|
psql -h localhost -U postgres -W postgres
|
2019-06-01 14:02:49 +00:00
|
|
|
```
|
|
|
|
|
2020-09-21 14:29:49 +00:00
|
|
|
## 3. Create the binded users with LDAP in postgres + the database
|
2019-06-01 14:02:49 +00:00
|
|
|
|
2020-09-21 14:29:49 +00:00
|
|
|
```sql
|
2022-08-25 00:02:40 +00:00
|
|
|
CREATE USER sogo;
|
|
|
|
Create database sogodb with owner sogo encoding 'utf8' LC_COLLATE = 'C' LC_CTYPE = 'C' TEMPLATE template0;
|
2019-06-01 14:02:49 +00:00
|
|
|
```
|