docker-self-service-password icon indicating copy to clipboard operation
docker-self-service-password copied to clipboard

Published 20 hours ago verified publisher icon tiredofit

LDAPS

Open jonny190 opened this issue 5 years ago • 4 comments

How can this be used with LDAPS i can't see a way of adding the CA

jonny190 avatar May 02 '19 11:05 jonny190

same issue here ! +1

el3ctrician avatar Dec 13 '19 15:12 el3ctrician

I created a workaround for me in Kubernetes. Maybe it helps:

configmap.yaml

---
apiVersion: v1
kind: ConfigMap
metadata:
  name: self-service-password-ldap
  namespace: default
data:
  ldap.conf: |
    TLS_REQCERT allow

deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
  name: sspw-wads-self-service-password
  namespace: "default"
spec:
  replicas: 1
  template:
    metadata:
      labels:
        app.kubernetes.io/name: self-service-password
        app.kubernetes.io/instance: sspw
    spec:
      volumes:
      - name: ldap-conf
        configMap:
          name: sspw-wads-self-service-password-ldap
      containers:
        - name: self-service-password
          volumeMounts:
          - mountPath: /etc/openldap
            name: ldap-conf
          image: "tiredofit/self-service-password:5.0.2"
[ ... ]

posteingang avatar Apr 29 '20 08:04 posteingang

Another option is to import required files into the container

FROM tiredofit/self-service-password:5.0.3

COPY tls/ca.pem /etc/ssl/certs/ca.pem
COPY ldap.conf /etc/openldap/ldap.conf

TLS_CACERT  /etc/ssl/certs/ca.pem
TLS_REQCERT try

avoidik avatar May 09 '20 16:05 avoidik

I created a workaround for me in Kubernetes. Maybe it helps:

configmap.yaml

---
apiVersion: v1
kind: ConfigMap
metadata:
  name: self-service-password-ldap
  namespace: default
data:
  ldap.conf: |
    TLS_REQCERT allow

deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
  name: sspw-wads-self-service-password
  namespace: "default"
spec:
  replicas: 1
  template:
    metadata:
      labels:
        app.kubernetes.io/name: self-service-password
        app.kubernetes.io/instance: sspw
    spec:
      volumes:
      - name: ldap-conf
        configMap:
          name: sspw-wads-self-service-password-ldap
      containers:
        - name: self-service-password
          volumeMounts:
          - mountPath: /etc/openldap
            name: ldap-conf
          image: "tiredofit/self-service-password:5.0.2"
[ ... ]

Has this worked for anyone? I have set the configmap and it works on container start. Still getting SSL errors on Debug.

TheUdK avatar Jun 17 '21 16:06 TheUdK