Updates for AniNIX/Password
This commit is contained in:
31
roles/Password/templates/ltb-ssp.config.inc.php.j2
Normal file
31
roles/Password/templates/ltb-ssp.config.inc.php.j2
Normal file
@@ -0,0 +1,31 @@
|
||||
<?php
|
||||
$lang = "en";
|
||||
$show_menu = false;
|
||||
$show_help = false;
|
||||
$logo = "";
|
||||
//$logo = "images/AniNIX.png";
|
||||
$default_action = "change";
|
||||
$notify_on_change = false;
|
||||
$use_sms = false;
|
||||
$ldap_url = "ldap://localhost:389";
|
||||
$ldap_binddn = "{{ secrets['Password']['binduser'] }},{{ ldap['orgdn'] }}";
|
||||
$ldap_bindpw = "{{ secrets['Password']['bindpassword'] }}";
|
||||
$who_change_password = "user";
|
||||
$ldap_base = "{{ ldap['orgdn'] }}";
|
||||
$keyphrase = "";
|
||||
// Requirements
|
||||
$pwd_min_lower = 1;
|
||||
$pwd_min_upper = 1;
|
||||
$pwd_min_digit = 1;
|
||||
$pwd_min_special = 1;
|
||||
$pwd_complexity = 4;
|
||||
$pwd_min_length = 8;
|
||||
$hash = "ssha";
|
||||
// Recaptcha currently doesn't work for changes in SameSite cookie attribute.
|
||||
$use_recaptcha = false;
|
||||
$recaptcha_publickey = "{{ secrets['Password']['recaptcha_publickey'] }}";
|
||||
$recaptcha_privatekey = "{{ secrets['Password']['recaptcha_privatekey'] }}";
|
||||
$recaptcha_theme = "dark";
|
||||
$recaptcha_type = "image";
|
||||
$recaptcha_size = "normal";
|
||||
?>
|
||||
@@ -15,7 +15,7 @@ gid nslcd
|
||||
#uri ldaps://127.0.0.1/
|
||||
#uri ldapi://%2fvar%2frun%2fldapi_sock/
|
||||
# Note: %2f encodes the '/' used as directory separator
|
||||
uri ldap://{{ ldap['server'] }}/
|
||||
uri ldap://127.0.0.1/
|
||||
|
||||
# The LDAP version to use (defaults to 3
|
||||
# if supported by client library)
|
||||
@@ -26,12 +26,12 @@ base {{ ldap['orgdn'] }}
|
||||
|
||||
# The distinguished name to bind to the server with.
|
||||
# Optional: default is to bind anonymously.
|
||||
binddn {{ ldap['binduser'] }},{{ ldap['userou'] }},{{ ldap['orgdn'] }}
|
||||
binddn uid=binduser,{{ ldap['userou'] }},{{ ldap['orgdn'] }}
|
||||
|
||||
# The credentials to bind with.
|
||||
# Optional: default is no credentials.
|
||||
# Note that if you set a bindpw you should check the permissions of this file.
|
||||
bindpw {{ secrets['Sora']['bindpassword'] }}
|
||||
bindpw {{ secrets['Password']['bindpassword'] }}
|
||||
|
||||
# The distinguished name to perform password modifications by root by.
|
||||
rootpwmoddn cn=root,{{ ldap['orgdn'] }}
|
||||
@@ -43,9 +43,9 @@ scope sub
|
||||
#scope base
|
||||
|
||||
# Customize certain database lookups.
|
||||
base group {{ ldap['groupou'] }},{{ ldap['orgdn'] }}
|
||||
base passwd {{ ldap['userou'] }},{{ ldap['orgdn'] }}
|
||||
base shadow {{ ldap['userou'] }},{{ ldap['orgdn'] }}
|
||||
base group ou=Group,{{ ldap['orgdn'] }}
|
||||
base passwd ou=People,{{ ldap['orgdn'] }}
|
||||
base shadow ou=People,{{ ldap['orgdn'] }}
|
||||
#scope group onelevel
|
||||
scope hosts sub
|
||||
|
||||
Reference in New Issue
Block a user