LDAP intermediate API for ProxmoxAAS

Go to file

Arthur Lu 8f8f6bd1e8 add installation instructions to README		2024-07-06 03:11:30 +00:00
app	add version route	2024-07-06 02:46:10 +00:00
configs	rename config.template,json to template.config.json	2024-06-27 02:40:09 +00:00
init	add Makefile, move systemd service file to init folder	2024-06-20 03:03:11 +00:00
.gitignore	rewrite api in go/gin	2024-06-18 21:23:22 +00:00
go.mod	rewrite api in go/gin	2024-06-18 21:23:22 +00:00
Makefile	add Makefile, move systemd service file to init folder	2024-06-20 03:03:11 +00:00
proxmoxaas-ldap.go	rewrite api in go/gin	2024-06-18 21:23:22 +00:00
README.md	add installation instructions to README	2024-07-06 03:11:30 +00:00

README.md

ProxmoxAAS LDAP - Simple REST API for LDAP

ProxmoxAAS LDAP provides a simple API for managing users and groups in a simplified LDAP server. Expected LDAP configuration can be initialized using open-ldap-setup.

Installation

Prerequisites

Initialized LDAP server with the following configuration
- Structure
  - Users: ou=people,...
    - objectType: inetOrgPerson
    - At least 1 user which is a member of admin group
  - Groups: ou=groups,...
    - objectType: groupOfNames
    - At least 1 admin group
- Permissions:
  - Admin group should have write access
  - Users should have write access to own attributes (cn, sn, userPassword)
  - Enable anonymous binding
- Load MemberOf Policy:
  - olcMemberOfDangling: ignore
  - olcMemberOfRefInt: TRUE
  - olcMemberOfGroupOC: groupOfNames
  - olcMemberOfMemberAD: member
  - olcMemberOfMemberOfAD: memberOf
- Password Policy and TLS are recommended but not required

Installation

Download proxmoxaas-ldap binary and template.config.json file from releases
Rename template.config.json to config.json and modify:
- ldapURL: url to the ldap server ie. ldap://ldap.domain.net
- baseDN: base DN ie. dc=domain,dc=net
- sessionSecretKey: random value used to randomize cookie values, replace with any sufficiently large random string
Run the binary