Add LDAP support for blossom-server

Only available in our feature branch atm

site-cookbooks/kosmos_blossom/recipes/default.rb

@@ -4,20 +4,30 @@
 #
 
 credentials = Chef::EncryptedDataBagItem.load('credentials', 'blossom')
+ldap_credentials = Chef::EncryptedDataBagItem.load('credentials', 'dirsrv')
+
+node.default['blossom']['repo_url'] = 'https://github.com/67P/blossom-server.git'
+node.default['blossom']['revision'] = 'feature/ldap'
 
 node.default['blossom']['storage']['backend'] = 's3'
 node.default['blossom']['storage']['s3']['access_key'] = credentials['s3_access_key']
 node.default['blossom']['storage']['s3']['secret_key'] = credentials['s3_secret_key']
 
+node.default['blossom']['allow_anonymous_uploads'] = false
+
+node.default['blossom']['ldap']['enabled'] = true
+node.default['blossom']['ldap']['url'] = 'ldap://ldap.kosmos.local:389'
+node.default['blossom']['ldap']['bind_dn'] = ldap_credentials["service_dn"]
+node.default['blossom']['ldap']['password'] = ldap_credentials["service_password"]
+node.default['blossom']['ldap']['search_dn'] = "ou=kosmos.org,cn=users,dc=kosmos,dc=org"
+node.default['blossom']['ldap']['search_filter'] = "(nostrKey={pubkey})"
+
 node.default['blossom']['dashboard']['enabled'] = true
 node.default['blossom']['dashboard']['username'] = credentials['admin_username'] || 'admin'
 node.default['blossom']['dashboard']['password'] = credentials['admin_password']
 
 node.default['blossom']['landing']['title'] = 'Kosmos Blossom Server'
 
-node.default['blossom']['repo_url'] = 'https://github.com/67P/blossom-server.git'
-node.default['blossom']['revision'] = 'master'
-
 include_recipe 'blossom::default'
 
 firewall_rule 'blossom' do