change paas to any admin user in init

openldap/init.sh

@@ -1,18 +1,25 @@
 export BASE_DN=''
+export ADMIN_ID=''
+export ADMIN_CN=''
+export ADMIN_SN=''
+export ADMIN_PASSWD=''
 read -p "Base DN: " BASE_DN
-
-export PAAS_PASSWD=$(tr -dc 'A-Za-z0-9!"#$%&'\''()*+,-./:;<=>?@[\]^_`{|}~' < /dev/urandom | head -c 256; echo)
-echo -n "$PAAS_PASSWD" > paas.token
-echo "Saved PAAS Authentication Token (password) to paas.token"
+read -p "Admin User ID: " ADMIN_ID
+read -p "Admin User CN: " ADMIN_CN
+read -p "Admin User SN: " ADMIN_SN
+read -s -p "Admin Password: " ADMIN_PASSWD
 
 envsubst '$BASE_DN' < auth.template.ldif > auth.ldif
 envsubst '$BASE_DN' < pass.template.ldif > pass.ldif
-envsubst '$BASE_DN:$PAAS_PASSWD' < init.template.ldif > init.ldif
+envsubst '$BASE_DN:$ADMIN_ID:$ADMIN_CN:$ADMIN_SN:$ADMIN_PASSWD' < init.template.ldif > init.ldif
 
 sudo ldapmodify -H ldapi:/// -Y EXTERNAL -f auth.ldif
 sudo ldapmodify -H ldapi:/// -Y EXTERNAL -f pass.ldif
 sudo ldapadd -H ldapi:/// -Y EXTERNAL -c -f init.ldif
 
 unset BASE_DN
-unset PAAS_PASSWD
+unset ADMIN_ID
+unset ADMIN_CN
+unset ADMIN_SN
+unset ADMIN_PASSWD
 rm auth.ldif init.ldif pass.ldif

openldap/init.template.ldif

@@ -15,9 +15,9 @@ member: uid=paas,ou=people,$BASE_DN
 cn: admins
 
 # paas user 
-dn: uid=paas,ou=people,$BASE_DN
+dn: uid=$ADMIN_ID,ou=people,$BASE_DN
 objectClass: inetOrgPerson
-cn: paas
-sn: paas
-uid: paas
-userPassword: $PAAS_PASSWD
+cn: $ADMIN_CN
+sn: $ADMIN_SN
+uid: $ADMIN_ID
+userPassword: $ADMIN_PASSWD

src/main.js

@@ -70,7 +70,7 @@ app.post("/ticket", async (req, res) => {
 		res.status(200).send({ auth: true });
 	}
 	else {
-		res.send({
+		res.status(403).send({
 			ok: bindResult.ok,
 			error: bindResult.error
 		});