update config.template.json,

update .gitignore,
fix required admin membership in openldap init,
add set cookie header to delete ticket endpoint

.gitignore

@@ -1,4 +1,3 @@
 **/package-lock.json
 **/node_modules
-**/*.token
 **/config.json

config/config.template.json

@@ -1,6 +1,9 @@
 {
+    "listenPort": 8082,
+    "ldapURL": "ldap://localhost",
     "basedn": "dc=example,dc=com",
     "sessionSecretKey": "super secret key",
+    "sessionCookieName": "PAASLDAPAuthTicket",
     "sessionCookie": {
         "path": "/",
         "httpOnly": true,

openldap/init.template.ldif

@@ -11,7 +11,7 @@ ou: groups
 # admin group
 dn: cn=admins,ou=groups,$BASE_DN
 objectClass: groupOfNames
-member: uid=paas,ou=people,$BASE_DN
+member: uid=$ADMIN_ID,ou=people,$BASE_DN
 cn: admins
 
 # paas user 

src/main.js

@@ -83,6 +83,8 @@ app.post("/ticket", async (req, res) => {
 app.delete("/ticket", async (req, res) => {
 	req.session.ldap = null;
 	req.session.destroy();
+	const expire = new Date(0);
+	res.cookie(global.config.sessionCookieName, "", { expires: expire });
 	res.send({ auth: false });
 });