From 80c7ecd5f473108eafc2409784cadf9b998753fa Mon Sep 17 00:00:00 2001 From: Luc Didry Date: Sun, 21 Oct 2018 14:41:11 +0200 Subject: [PATCH] Add start_tls option for ldap --- cpanfile | 2 +- lufi.conf.template | 6 ++++++ 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/cpanfile b/cpanfile index 4659f35..b519fdf 100644 --- a/cpanfile +++ b/cpanfile @@ -4,7 +4,7 @@ requires 'Mojolicious::Plugin::DebugDumperHelper'; requires 'Mojolicious::Plugin::I18N'; requires 'Mojolicious::Plugin::Mail'; requires 'Mojolicious::Plugin::FiatTux::Helpers', '== 0.01', url => 'https://framagit.org/luc/mojolicious-plugin-fiattux-helpers/-/archive/0.01/mojolicious-plugin-fiattux-helpers-0.01.tar.gz'; -requires 'Mojolicious::Plugin::FiatTux::GrantAccess', '== 0.03', url => 'https://framagit.org/luc/mojolicious-plugin-fiattux-grantaccess/-/archive/0.03/mojolicious-plugin-fiattux-grantaccess-0.03.tar.gz'; +requires 'Mojolicious::Plugin::FiatTux::GrantAccess', '== 0.05', url => 'https://framagit.org/luc/mojolicious-plugin-fiattux-grantaccess/-/archive/0.05/mojolicious-plugin-fiattux-grantaccess-0.05.tar.gz'; requires 'EV'; requires 'Filesys::DiskUsage'; requires 'Switch'; diff --git a/lufi.conf.template b/lufi.conf.template index 22649d0..f01833c 100644 --- a/lufi.conf.template +++ b/lufi.conf.template @@ -146,6 +146,12 @@ # bind_pwd => 'secr3t', # search bind password # user_attr => 'uid', # user attribute (uid, mail, sAMAccountName, etc.) # user_filter => '(!(uid=ldap_user))', # user filter (to exclude some users, etc.) + # # optional start_tls configuration. See https://metacpan.org/pod/distribution/perl-ldap/lib/Net/LDAP.pod#start_tls + # # don't set or uncomment if you don't want to configure it + # start_tls => { + # verify => 'optional', + # clientcert => '/etc/ssl/certs/ca-bundle.pem' + # } #}, # set `htpasswd` if you want to use an htpasswd file instead of ldap