-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathmetadata.json
284 lines (268 loc) · 9.51 KB
/
metadata.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
{
"name": "openldap",
"description": "Installs/Configures openldap",
"long_description": "# DESCRIPTION:\nA set of Chef tools for installing, configuring, and managing OpenLDAP\n\n# REQUIREMENTS:\nThis cookbook requires the rightscale cookbook.\n\n# ATTRIBUTES:\n\nopenldap/config_admin_password, set as the rootpw for the cn=config database, as well as all databases created (or accessed) by this cookbook\n\nA rootdn will be created named cn=chef-openldap-cookbook,<basedn> for any database created or accessed by this cookbook\n\nAs a failsafe, all databases will allow manage from a locally authenticated (by SASL) user connecting to LDAPI\n\n# USAGE:\n\n# TODO:\n\n* Security\n * Consider creating a user for each DB which will be the \"admin\" user for this cookbook. This would *not* be the rootdn and rootpw, and would be restricted to access from localhost only using \"peername\" http://www.openldap.org/doc/admin24/access-control.html\n\ncollectd monitoring goodness.\nhttp://prefetch.net/articles/monitoringldap.html\n\nUse a rubygem to access and manipulate ldap\nhttps://rubygems.org/gems/net-ldap\n\nFully implement provider/consumer\n\nEnable LDAP over SSH encryption\n\nCRAZY MAD UZEFULZ -- http://blogs.mindspew-age.com/tag/memory-mapped-database/\n\nBackup infoz -- http://www.openldap.org/faq/data/cache/287.html",
"maintainer": "Ryan J. Geyer",
"maintainer_email": "me@ryangeyer.com",
"license": "Apache 2.0",
"platforms": {
"ubuntu": ">= 0.0.0",
"centos": ">= 0.0.0"
},
"dependencies": {
"rightscale": ">= 0.0.0",
"rightscale_sandbox": ">= 0.0.0",
"sys_dns": ">= 0.0.0",
"block_device": ">= 0.0.0"
},
"recommendations": {
},
"suggestions": {
},
"conflicting": {
},
"providing": {
},
"replacing": {
},
"attributes": {
"openldap/allow_remote": {
"display_name": "OpenLDAP Allow Remote?",
"description": "A boolean indicating if the OpenLDAP server should accept remote connections or not",
"choice": [
"true",
"false"
],
"required": "required",
"category": "OpenLDAP Daemon",
"recipes": [
"openldap::install_openldap"
],
"calculated": false,
"type": "string"
},
"openldap/listen_port": {
"display_name": "OpenLDAP listen port",
"description": "The TCP/IP port the OpenLDAP server should listen on",
"default": "389",
"category": "OpenLDAP Daemon",
"recipes": [
"openldap::install_openldap"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/config_admin_cn": {
"display_name": "OpenLDAP Config Admin CN",
"description": "The desired \"Common Name\" for the slapd configuration (cn=config) administrator",
"category": "OpenLDAP olcConfig",
"required": "required",
"choice": [
],
"calculated": false,
"type": "string",
"recipes": [
]
},
"openldap/config_admin_password": {
"display_name": "OpenLDAP Config Admin password",
"description": "The desired password for the slapd configuration (cn=config) administrator",
"category": "OpenLDAP olcConfig",
"required": "required",
"choice": [
],
"calculated": false,
"type": "string",
"recipes": [
]
},
"openldap/replication_user_cn": {
"display_name": "OpenLDAP Replication User CN",
"description": "A CN given to the replication user which will be automatically created in each database to be replicated. For a single producer with a single database with a root dn of dc=foo,dc=bar the created replication user will be cn=<replication_user_cn>,dc=foo,dc=bar",
"required": "optional",
"default": "dbrepl",
"category": "OpenLDAP Replication",
"recipes": [
"openldap::do_initialize_provider",
"openldap::do_initialize_consumer"
],
"choice": [
],
"calculated": false,
"type": "string"
},
"openldap/replication_user_password": {
"display_name": "OpenLDAP Replication Password",
"description": "The password used for the replication user which will be automatically created in each database to be replicated.",
"required": "required",
"category": "OpenLDAP Replication",
"recipes": [
"openldap::do_initialize_provider",
"openldap::do_initialize_consumer"
],
"choice": [
],
"calculated": false,
"type": "string"
},
"openldap/schemas": {
"display_name": "OpenLDAP Schemas",
"description": "A list (in the form of an array) of schemas to install",
"type": "array",
"default": [
"core",
"cosine",
"inetorgperson"
],
"category": "OpenLDAP olcConfig",
"recipes": [
"openldap::install_openldap",
"openldap::do_enable_schemas"
],
"choice": [
],
"calculated": false,
"required": "optional"
},
"openldap/database_admin_cn": {
"display_name": "OpenLDAP Database Admin CN",
"description": "The desired \"Common Name\" for the administrator of the new database",
"required": "required",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string"
},
"openldap/database_admin_password": {
"display_name": "OpenLDAP Config Admin password",
"description": "The desired password for the administrator of the new database",
"required": "required",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string"
},
"openldap/base_dn": {
"display_name": "OpenLDAP Database Base DN",
"description": "The base DN of the new database to create, if set to 'Ignore' the new database will contain all DN's other than cn=config",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/db_type": {
"display_name": "OpenLDAP Database Type",
"description": "The OpenLDAP database type, currently only bdb and hdb are supported",
"choice": [
"hdb",
"bdb"
],
"default": "hdb",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/cache_size": {
"display_name": "OpenLDAP Database Cache Size",
"description": "A Berkley DB tuning setting, leave it as \"0 2097152 0\" if you don't know what you're doing.",
"default": "0 2097152 0",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/max_objects": {
"display_name": "OpenLDAP Database Max Objects",
"description": "A Berkley DB tuning setting, leave it as \"1500\" if you don't know what you're doing.",
"default": "1500",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/max_locks": {
"display_name": "OpenLDAP Database Max Locks",
"description": "A Berkley DB tuning setting, leave it as \"1500\" if you don't know what you're doing.",
"default": "1500",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/max_lockers": {
"display_name": "OpenLDAP Database Max Lockers",
"description": "A Berkley DB tuning setting, leave it as \"1500\" if you don't know what you're doing.",
"default": "1500",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
},
"openldap/checkpoint": {
"display_name": "OpenLDAP Database Checkpoint",
"description": "A Berkley DB tuning setting, leave it as \"512 30\" if you don't know what you're doing.",
"default": "512 30",
"category": "OpenLDAP Database",
"recipes": [
"openldap::do_create_database"
],
"choice": [
],
"calculated": false,
"type": "string",
"required": "optional"
}
},
"groupings": {
},
"recipes": {
"openldap::install_openldap": "Installs a basic, working OpenLDAP server daemon",
"openldap::setup_rightscale_syslog": "Appends configuration for OpenLDAP to the RightScale syslog configuration.",
"openldap::setup_config_admin_creds": "Sets the CN (Common Name) and password for the configuration admin",
"openldap::do_create_database": "Creates a new database to contain records for the specified base_dn",
"openldap::do_enable_schemas": "Enables the OpenLDAP schemas listed",
"openldap::do_initialize_provider": "Configures this node to be the LDAP replication provider.",
"openldap::do_initialize_consumer": "Configures this node to be an LDAP replication consumer."
},
"version": "0.0.1"
}