Copyright (c) 2023 David M. Syzdek david@syzdek.net All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted only as authorized by the OpenLDAP Public License.
A copy of this license is available in the file LICENSE in the top-level directory of the distribution or, alternatively, at http://www.OpenLDAP.org/license.html.
- Overview
- Software Requirements
- Source Code
- Package Maintence Notes
This package contains an overlay for the OpenLDAP slapd which generates substitute attribtues for accountShadow which are derived from the password policies used by the slapo-ppolicy overlay. This package defines an alternate schema which is a drop in replacement for the accountShadow and related attributes which are defined by RFC2307.
At a mimumum add the following configuration options to the slapd.conf:
database mdb
suffix dc=example,dc=com
...
overlay pwdshadow
pwdshadow_default "cn=Standard,ou=Policies,dc=example,dc=com"
pwdshadow_override on
To enable the generation of pwdShadow attributes on the user's entry using, set pwdShadowGenerate on the user's entry:
dn: uid=jdoe,ou=People,dc=example,dc=com
changetype: modify
replace: pwdShadowGenerate
pwdShadowGenerate: TRUE
Once the overlay is enabled in the server and the pwdShadowGenerate attribute has been set on the user's entry, the following attribute should appear on the user's entry:
ldapsearch -LLL -x uid=jdoe pwdShadowGenerate pwdShadowLastChange \
> pwdChangedTime
dn: uid=jdoe,ou=People,dc=example,dc=com
pwdChangedTime: 20230508153856Z
pwdShadowGenerate: TRUE
pwdShadowLastChange: 19485
For more information, please see the man page: slapo-pwdshadow.5
- OpenLDAP >= 2.5.x
The source code for this project is maintained using git (http://git-scm.com). The following contains information to checkout the source code from the git repository.
Browse Source:
Git URLs:
Downloading Source:
$ git clone https://github.com/syzdek/slapo-pwdshadow.git
Preparing Source:
$ cd slapo-pwdshadow
$ ./autogen.sh
Compiling Source:
$ cd build
$ ./configure
$ make && make install
For more information on building and installing using configure, please read the INSTALL file.
Git Branches:
- master - Current release of packages.
- next - changes staged for next release
- pu - proposed updates for next release
- xx/yy+ - branch for testing new changes before merging to 'pu' branch
This is a collection of notes for developers to use when maintaining this package.
New Release Checklist:
-
Switch to 'master' branch in Git repository.
-
Update PKGVERSION and RELEASEDATE in GNUmakefile.
-
Update date and version in ChangeLog.md.
-
Commit GNUmakefile and ChangeLog.md changes to repository.
-
Create tag in git repository:
$ git tag -s v${MAJOR}.${MINOR}
-
Push repository to publishing server:
$ git push --tags origin master next pu