kosmos/akkounts
kosmos
/
akkounts
8
1
Fork 0
Code Issues 21 Pull Requests 1 Actions Packages Releases 11 Activity

LDAP mock server for local development #2

New Issue
Closed
opened 2020-11-18 17:57:22 +00:00 by bumi · 4 comments
bumi commented 2020-11-18 17:57:22 +00:00
Owner
Copy Link

I've seen this ldab-server-mock written in JavaScript and was wondering if we can use that one for local development.

It seems to run and I get a "Invalid username or password." error, but I am not sure what exactly needs to go into the server.json and users.json files to work with out kosmos ldap settings. (cn? dc? ou? attributes?)

I've seen this [ldab-server-mock](https://github.com/veo-labs/ldap-server-mock) written in JavaScript and was wondering if we can use that one for local development. It seems to run and I get a "Invalid username or password." error, but I am not sure what exactly needs to go into the server.json and users.json files to work with out kosmos ldap settings. (cn? dc? ou? attributes?)
👍 1
raucao commented 2020-11-18 18:14:00 +00:00
Owner
Copy Link

That server is just for tests, but could come in handy for sure. Currently, the very few specs that there are do not talk to LDAP at all, but just use mocks or direct Warden sign-ins.

Our LDAP entry layout is documented on the wiki here:

https://wiki.kosmos.org/Infrastructure:LDAP

We basically use cn as unique ID/username, and ou for the domain (kosmos.org vs. custom/pro domains like currently 5apps.com).

dn: cn=bumi,ou=kosmos.org,cn=users,dc=kosmos,dc=org

(Also see https://gitea.kosmos.org/kosmos/akkounts/src/branch/master/config/ldap.yml#L31-L32 for how it's configured with the devise LDAP plugin for example.)

That server is just for tests, but could come in handy for sure. Currently, the very few specs that there are do not talk to LDAP at all, but just use mocks or direct Warden sign-ins. Our LDAP entry layout is documented on the wiki here: https://wiki.kosmos.org/Infrastructure:LDAP We basically use `cn` as unique ID/username, and `ou` for the domain (kosmos.org vs. custom/pro domains like currently 5apps.com). ```ldif dn: cn=bumi,ou=kosmos.org,cn=users,dc=kosmos,dc=org ``` (Also see https://gitea.kosmos.org/kosmos/akkounts/src/branch/master/config/ldap.yml#L31-L32 for how it's configured with the devise LDAP plugin for example.)
raucao added the
idea
dev environment
 labels 2020-11-18 18:16:48 +00:00
bumi commented 2020-11-18 19:49:06 +00:00
Author
Owner
Copy Link

yeah, I got:

server config:

{
  "port": 3004,
  "userLoginAttribute": "cn",
  "searchBase": "ou=kosmos.org,cn=users,dc=kosmos,dc=org",
  "searchFilter": "(&(objectclass=person)(cn={{username}}))"
}

users:

[
  {
    "dn": "cn=bumi,ou=kosmos.org,cn=users,dc=kosmos,dc=org",
    "cn": "bumi",
    "sn": "bumi",
    "objectClass": "top",
    "objectClass": "account",
    "objectClass": "person",
    "objectClass": "extensibleObject",
    "mail": "bumi@kosmos.org",
    "uid": "uidbumi",
    "userPassword": "secret",
    "xmpp": "enabled"
  }
]

but Devise::LDAP::Adapter.get_ldap_param(self.cn, "mail") returns nil. (in User#ldap_before_save)

yeah, I got: server config: ``` { "port": 3004, "userLoginAttribute": "cn", "searchBase": "ou=kosmos.org,cn=users,dc=kosmos,dc=org", "searchFilter": "(&(objectclass=person)(cn={{username}}))" } ``` users: ``` [ { "dn": "cn=bumi,ou=kosmos.org,cn=users,dc=kosmos,dc=org", "cn": "bumi", "sn": "bumi", "objectClass": "top", "objectClass": "account", "objectClass": "person", "objectClass": "extensibleObject", "mail": "bumi@kosmos.org", "uid": "uidbumi", "userPassword": "secret", "xmpp": "enabled" } ] ``` but `Devise::LDAP::Adapter.get_ldap_param(self.cn, "mail")` returns nil. (in User#ldap_before_save)
raucao commented 2020-11-18 20:13:12 +00:00
Owner
Copy Link

If it found the user and only that method failed, then maybe the mock server doesn't implement whatever that call translates to as an LDAP request?

Difficult to say from here, not having looked into the mock server at all yet.

If it found the user and only that method failed, then maybe the mock server doesn't implement whatever that call translates to as an LDAP request? Difficult to say from here, not having looked into the mock server at all yet.
raucao commented 2022-12-16 10:02:12 +00:00
Owner
Copy Link

@bumi I've solved the LDAP dev situation with Docker Compose and new seed tasks:

#74

Maybe you can try it out and let me know if it works for you? There's a quick start section in the README there, which just needs a few commands to have everything running, configured, and seeded.

@bumi I've solved the LDAP dev situation with Docker Compose and new seed tasks: https://gitea.kosmos.org/kosmos/akkounts/pulls/74 Maybe you can try it out and let me know if it works for you? There's a quick start section in the README there, which just needs a few commands to have everything running, configured, and seeded.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
master
feature/170-nostr_zaps
feature/nostr_login
feature/ldap_aci
docs/readme
feature/contribution_nav
chore/fix_ci
chore/decrease_min_sats
bugfix/faraday_post
bugfix/ejabberd_http_port
feature/automatic_xmpp_roster
chore/update_service_link
feature/signup_from_invite
chore/cache_bundle_on_ci
bugfix/config_without_master_key
bugfix/production_credentials
chore/production_prep
dev/configure_drone_ci
v0.9.0
v0.8.1
v0.8.0
v0.7.0
v0.6.0
v0.5.0
v0.4.0
v0.3.0
v0.2.1
v0.2.0
v0.1.0
Labels
Clear labels   
integration
discourse

  
integration
ejabberd

  
integration
ldap

  
integration
lndhub

  
integration
nostr

  
bug

Something is not working

  
design

Graphic/visual design

  
dev environment

Config, builds, CI, deployment, etc.

  
docs

Documentation

  
duplicate

This issue or pull request already exists

  
enhancement

Improving existing functionality

  
feature

New functionality

  
good first issue

Dive in, and start contributing

  
idea

Something to consider

  
invalid

Not a bug

  
kredits-1

Small contribution

  
kredits-2

Medium contribution

  
kredits-3

Large contribution

  
on hold

Currently not actionable

  
ops

Manual IT ops activities

  
question

Looking for an answer

  
release
major

  
release
minor

  
release
patch

  
security

All your base are belong to us

  
ui/ux

User interface, process design, etc.

  
wontfix

This won't be fixed

No Label
integration
discourse
integration
ejabberd
integration
ldap
integration
lndhub
integration
nostr
bug
design
dev environment
docs
duplicate
enhancement
feature
good first issue
idea
invalid
kredits-1
kredits-2
kredits-3
on hold
ops
question
release
major
release
minor
release
patch
security
ui/ux
wontfix
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: kosmos/akkounts#2
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?