Greg greg

1 Followers · 0 Following

• Joined on 2018-11-05
• • 

Repositories Projects Packages Public Activity Starred Repositories

1

greg commented on issue kosmos/chef#123 2020-02-17 13:31:57 +00:00

Enable LDAP support on ejabberd

I have created a page to document the SASL downgrade: https://wiki.kosmos.org/Services:XMPP:SASL_downgrade

We can add a screenshot to it right after the switch

greg commented on pull request kosmos/chef#132 2020-02-17 12:54:21 +00:00

Enable LDAP for the XMPP 5apps.com vhost

I have managed to move each vhost's config to its own file. ejabberd merges the hosts, see 38f39af2a4

greg pushed to feature/123-ejabberd_5apps at kosmos/chef 2020-02-17 12:27:34 +00:00

72cc6342f1 Remove the unused LDAP variables from the main config file

greg pushed to feature/123-ejabberd_5apps at kosmos/chef 2020-02-17 12:21:14 +00:00

38f39af2a4 Move each vhost to its own config file

greg pushed to feature/123-ejabberd_5apps at kosmos/chef 2020-02-17 11:33:10 +00:00

463664448c Merge branch 'master' into feature/123-ejabberd_5apps

5b86aca5e8 Update andromeda node info

585041e36c Merge branch 'bugfix/128-set_acis_on_users' of kosmos/chef into master

e56faab5b1 Set the ACIs on the base DN

Compare 4 commits »

greg opened issue kosmos/chef#133 2020-02-15 19:49:37 +00:00

Prevent config files from being reverted when they are part of an unmerged PR

greg commented on issue kosmos/chef#123 2020-02-15 13:12:36 +00:00

Enable LDAP support on ejabberd

The Conversations issue contains a screenshot of it, no?

greg commented on issue kosmos/chef#123 2020-02-14 18:16:20 +00:00

Enable LDAP support on ejabberd

I have added a task to create a new page that documents the SASL downgrade on Conversations for existing users. I think it should include a screenshot for it to be clear. The best way I can think of to do that is to create a test kosmos.org user, and then enable both psql and ldap temporarily (with only that user created in LDAP)

greg commented on issue kosmos/gitea.kosmos.org#44 2020-02-14 16:27:06 +00:00

Generate the ini config file from environment variables?

How many passwords to we really have in the config? It can’t be that many.

greg opened issue kosmos/gitea.kosmos.org#44 2020-02-14 16:00:08 +00:00

Generate the ini config file from environment variables?

greg deleted branch bugfix/128-set_acis_on_users from kosmos/chef 2020-02-14 15:47:23 +00:00

greg merged pull request kosmos/chef#131 2020-02-14 15:47:18 +00:00

Set the ACIs on the base DN

greg closed pull request kosmos/chef#131 2020-02-14 15:47:18 +00:00

Set the ACIs on the base DN

greg pushed to master at kosmos/chef 2020-02-14 15:47:18 +00:00

585041e36c Merge branch 'bugfix/128-set_acis_on_users' of kosmos/chef into master

e56faab5b1 Set the ACIs on the base DN

Compare 2 commits »

greg closed issue kosmos/chef#128 2020-02-14 15:47:18 +00:00

LDAP users should only be able to change their own password

greg commented on issue kosmos/chef#132 2020-02-14 13:03:26 +00:00

Enable LDAP for the XMPP 5apps.com vhost

Good point, I have moved the admin users to an encrypted data bag

greg commented on issue kosmos/chef#123 2020-02-14 13:02:25 +00:00

Enable LDAP support on ejabberd

The LDAP implementation in ejabberd doesn't support SASL authentication. From the docs:

greg pushed to feature/123-ejabberd_5apps at kosmos/chef 2020-02-14 12:57:28 +00:00

55eb95ae73 Verify the TLS server's certificate

dc1226073c Move the admin users to the ejabberd encrypted data bag

Compare 2 commits »

greg commented on issue kosmos/chef#132 2020-02-14 09:11:33 +00:00

Enable LDAP for the XMPP 5apps.com vhost

I was considering using different files for the vhosts, but then I could not find a way to define the hosts all at once (https://docs.ejabberd.im/admin/configuration/#host-names), so it didn't seem to make much sense to split the config. I'm going to look into what's possible

greg created pull request kosmos/chef#132 2020-02-12 17:04:36 +00:00

WIP: Enable LDAP on the XMPP 5apps.com vhost