Categories

ID #1441

How do I integrate ldap-passwd-webui with Bright?

What is ldap-passwd-webui?

A simple an class="highlight">toan>ol, written entirely in Python.
The original an class="highlight">toan>ol can be found at <a href="https://github.com/jirutka/ldap-passwd-webui">https://github.com/jirutka/ldap-passwd-webuia>
It allows the end user an class="highlight">toan> change their password via a web interface.

an class="highlight">Toan> allow integration with Bright Cluster Manager,an>an style="font-family: 'courier new', courier;"> ldap-passwd-webuian> was modifiedan>. The modified an class="highlight">toan>ol is at:
<a href="http://support.brightcomputing.com/ldap-passwd-webui/ldap-passwd-webui-master.zip">http://support2.brightcomputing.com/ldap-passwd-webui/ldap-passwd-webui-master.zipa>


Requirements:
The an class="highlight">toan>ol runs on Python 3, and was tested with Python 3.6.7
A an style="font-family: 'courier new', courier;">requirements.txtan> file is found in the project. The contents mention the following version requirements:
bottle >= 0.12.8
ldap3 >= 2.0, < 3.0
configparser; python_version < '3.3'

Installation steps, inan class="highlight">toan> linux

  • Download from <a href="http://support.brightcomputing.com/ldap-passwd-webui/ldap-passwd-webui-master.zip">http://support2.brightcomputing.com/ldap-passwd-webui/ldap-passwd-webui-master.zipa>
  • an style="font-family: 'courier new', courier;">unzip ldap-passwd-webui-master.zipan>
  • an style="font-family: 'courier new', courier;">cd ldap-passwd-webuian>
  • an style="font-family: 'courier new', courier;">pip3 install -r requirements.txtan>


Configuration
an class="highlight">Toan> make ldap-passwd-webui work with Bright cluster, the following cert and key files need an class="highlight">toan> be copied over from the head node inan class="highlight">toan> an>the project's home direcan class="highlight">toan>ryan>:
an style="font-family: 'courier new', courier;">/cm/local/apps/openldap/etc/certs/ca.peman>
an style="font-family: 'courier new', courier;">/cm/local/apps/openldap/etc/certs/ldap.peman>
an style="font-family: 'courier new', courier;">/cm/local/apps/openldap/etc/certs/ldap.keyan>
an style="font-size: 13px;"> an>

The an style="font-family: 'courier new', courier;">settings.ini.examplean> file should then be copied over an class="highlight">toan> an style="font-family: 'courier new', courier;">settings.inian>


An example of a an style="font-family: 'courier new', courier;">settings.inian> file that works with the default configuration of the cluster is:

 

[html]
page_title = Change your password

[ldap]
host = ldapserver
port = 636
use_ssl = True
base = ou=Group,dc=cm,dc=cluster
search_filter = cn={uid}

# Uncomment if your ldap server requires client an class="highlight">toan> present those files
[tls]
key_file = ldap.key
cert_file = ldap.pem
ca_file = ca.pem

# Uncomment for AD / Samba 4
#type = ad
#ad_domain = ad.example.org
#search_filter = sAMAccountName={uid}

[server]
server = auan class="highlight">toan>
host = localhost
port = 8080

 


When done, the an class="highlight">toan>ol can be run.

Running
an style="font-family: 'courier new', courier;">ldap-passwd-webuian> can run as a standalone web server:

python3 app.py

 an style="font-size: 13px;"> an>

The URL an class="highlight">toan> reach the GUI is:

 

<a title="http://localhost:8080" href="http://localhost:8080">http://localhost:8080a>


The an style="font-family: 'courier new', courier;">README.adocan> file that is included with the an class="highlight">toan>ol has further details about web server integration.

Tags: LDAP, ldap-passwd-webui, password, web

Related entries:

You cannot comment on this entry