LDAP intermediate API for ProxmoxAAS
Go to file
2024-10-15 21:34:34 +00:00
app improve ModGroup to perform NOP 2024-10-15 21:34:34 +00:00
configs fix default session cookie max age, 2024-07-18 20:22:12 +00:00
init add Makefile, move systemd service file to init folder 2024-06-20 03:03:11 +00:00
.gitignore rewrite api in go/gin 2024-06-18 21:23:22 +00:00
go.mod improve ModGroup to perform NOP 2024-10-15 21:34:34 +00:00
Makefile fix default session cookie max age, 2024-07-18 20:22:12 +00:00
proxmoxaas-ldap.go rewrite api in go/gin 2024-06-18 21:23:22 +00:00
README.md add installation instructions to README 2024-07-06 03:11:30 +00:00

ProxmoxAAS LDAP - Simple REST API for LDAP

ProxmoxAAS LDAP provides a simple API for managing users and groups in a simplified LDAP server. Expected LDAP configuration can be initialized using open-ldap-setup.

Installation

Prerequisites

  • Initialized LDAP server with the following configuration
    • Structure
      • Users: ou=people,...
        • objectType: inetOrgPerson
        • At least 1 user which is a member of admin group
      • Groups: ou=groups,...
        • objectType: groupOfNames
        • At least 1 admin group
    • Permissions:
      • Admin group should have write access
      • Users should have write access to own attributes (cn, sn, userPassword)
      • Enable anonymous binding
    • Load MemberOf Policy:
      • olcMemberOfDangling: ignore
      • olcMemberOfRefInt: TRUE
      • olcMemberOfGroupOC: groupOfNames
      • olcMemberOfMemberAD: member
      • olcMemberOfMemberOfAD: memberOf
    • Password Policy and TLS are recommended but not required

Installation

  1. Download proxmoxaas-ldap binary and template.config.json file from releases
  2. Rename template.config.json to config.json and modify:
    • ldapURL: url to the ldap server ie. ldap://ldap.domain.net
    • baseDN: base DN ie. dc=domain,dc=net
    • sessionSecretKey: random value used to randomize cookie values, replace with any sufficiently large random string
  3. Run the binary