From ab49df5c6ecefed170126b69026e431e16d47e2a Mon Sep 17 00:00:00 2001 From: dbildungs-iam-ldap-gha Date: Wed, 18 Dec 2024 07:58:20 +0000 Subject: [PATCH] dbildungs-iam-ldap --- automation/dbildungs-iam-ldap/Chart.lock | 2 +- automation/dbildungs-iam-ldap/Chart.yaml | 4 +-- automation/dbildungs-iam-ldap/values.yaml | 32 ++++++++++++----------- 3 files changed, 20 insertions(+), 18 deletions(-) diff --git a/automation/dbildungs-iam-ldap/Chart.lock b/automation/dbildungs-iam-ldap/Chart.lock index d5de9c728..b0c5b48e6 100644 --- a/automation/dbildungs-iam-ldap/Chart.lock +++ b/automation/dbildungs-iam-ldap/Chart.lock @@ -6,4 +6,4 @@ dependencies: repository: https://charts.bitnami.com/bitnami version: 2.27.0 digest: sha256:63b46b2edf8052dbee0f4b2111a8838aa521f9fc95681e0ee3f32274aa4473a6 -generated: "2024-12-18T06:40:40.954740009Z" +generated: "2024-12-18T07:57:37.704665617Z" diff --git a/automation/dbildungs-iam-ldap/Chart.yaml b/automation/dbildungs-iam-ldap/Chart.yaml index fdc7aab97..de154305e 100644 --- a/automation/dbildungs-iam-ldap/Chart.yaml +++ b/automation/dbildungs-iam-ldap/Chart.yaml @@ -1,5 +1,5 @@ apiVersion: v2 -appVersion: SPSH-1529 +appVersion: dbp-1084 dependencies: - condition: phpldapadmin.enabled name: phpldapadmin @@ -16,4 +16,4 @@ keywords: - ldap - openldap name: dbildungs-iam-ldap -version: 0.0.0-spsh-1529-20241218-0640 +version: 0.0.0-dbp-1084-20241218-0757 diff --git a/automation/dbildungs-iam-ldap/values.yaml b/automation/dbildungs-iam-ldap/values.yaml index 5a3b61852..476b7f2e7 100644 --- a/automation/dbildungs-iam-ldap/values.yaml +++ b/automation/dbildungs-iam-ldap/values.yaml @@ -77,12 +77,12 @@ env: # LDAP_EXTRA_SCHEMAS: cosine,inetorgperson,nis # Security - LDAP_ENABLE_TLS: "no" + LDAP_ENABLE_TLS: "yes" # LDAP_ENABLE_TLS: "no" # disable it for testing with phpldapadmin # LDAP_REQUIRE_TLS: "yes" # not sure whether this is necessary, it breaks stuff LDAPTLS_REQCERT: "never" LDAP_TLS_ENFORCE: "false" - LDAP_ALLOW_ANON_BINDING: "yes" + LDAP_ALLOW_ANON_BINDING: "no" # Accesslog LDAP_ENABLE_ACCESSLOG: "yes" @@ -333,8 +333,8 @@ initSchema: ## 'initTlsSecret' init container parameters ## need a secret with tls.crt, tls.key initTLSSecret: - tls_enabled: false # adminldap, per default disabled only works with tls_enabled + tls_enabled: false # tls_enabled: true # needs to get enabled if you want to make the service available to the outside # Note that only one namespace at a time can use this feature and that you need to copy a tls secret into the namespace, see Confluence for more information image: @@ -401,24 +401,26 @@ customStartupProbe: {} ## phpldapadmin ## For more parameters check following file: ./charts/phpldapadmin/values.yaml -# if you want to use phpldapadmin for debugging set: -env: - LDAP_ENABLE_TLS: "no" +# if you want to use phpldapadmin for debugging set: +# initTLSSecret: + # tls_enabled: false +# env: + # LDAP_ENABLE_TLS: "no" phpldapadmin: - enabled: true + enabled: false image: tag: 0.9.0 env: PHPLDAPADMIN_LDAP_CLIENT_TLS_REQCERT: "never" ingress: enabled: true - annotations: - kubernetes.io/ingress.class: "nginx" - hosts: - - spsh-1529-phpldapadmin.dev.spsh.dbildungsplattform.de + annotations: {} + # ingressClassName: nginx path: / pathType: Prefix - tls: - - secretName: phpldapadmin-tls - hosts: - - spsh-1529-phpldapadmin.dev.spsh.dbildungsplattform.de + hosts: + - phpldapadmin.example + tls: [] + # - secretName: phpldapadmin.example + # hosts: + # - phpldapadmin.example