0553ab7dfc
A secure openldap server that can connect over TLS/SSL requires SSL certificate configuration. Added "certs.ldif" file to openldap configuration to update openldap schema with certificate and key configuration. The certificate configuration from "certs.ldif" will be applied to schema file “/etc/openldap/schema/cn=config.ldif” using ldapmodify. Tests performed: PASS: Check the "certs.ldif" file gets deployed in "/etc/openldap". PASS: Openldap certificate and key files have been added to schema file “/etc/openldap/schema/cn=config.ldif” after applying the updates from "certs.ldif" using ldapmodify command. Story: 2009834 Task: 44896 Signed-off-by: Carmen Rata <carmen.rata@windriver.com> Change-Id: Id726c6162737ca21493b2be4c75b07b82f83ed40
61 lines
1.7 KiB
RPMSpec
61 lines
1.7 KiB
RPMSpec
#
|
|
# SPDX-License-Identifier: Apache-2.0
|
|
#
|
|
# Copyright (C) 2019 Intel Corporation
|
|
#
|
|
Summary: StarlingX openldap Configuration File
|
|
Name: openldap-config
|
|
Version: 1.0
|
|
Release: %{tis_patch_ver}%{?_tis_dist}
|
|
License: Apache-2.0
|
|
Group: config-files
|
|
Packager: StarlingX
|
|
URL: unknown
|
|
Source: %name-%version.tar.gz
|
|
|
|
BuildArch: noarch
|
|
Requires: openldap-servers
|
|
|
|
%define debug_package %{nil}
|
|
%define local_systemd_system %{_sysconfdir}/systemd/system
|
|
|
|
%description
|
|
StarlingX openldap configuration file
|
|
|
|
%prep
|
|
|
|
%setup
|
|
|
|
%build
|
|
|
|
%install
|
|
install -d %{buildroot}%{local_systemd_system}
|
|
install -d %{buildroot}%{_sysconfdir}/rc.d/init.d
|
|
install -m 755 initscript %{buildroot}%{_sysconfdir}/rc.d/init.d/openldap
|
|
install -d -m 740 %{buildroot}%{_sysconfdir}/openldap
|
|
install -m 600 slapd.conf %{buildroot}%{_sysconfdir}/openldap/slapd.conf
|
|
install -m 600 initial_config.ldif %{buildroot}%{_sysconfdir}/openldap/initial_config.ldif
|
|
install -m 600 certs.ldif %{buildroot}%{_sysconfdir}/openldap/certs.ldif
|
|
install -p -D -m 644 slapd.syslog-ng.conf %{buildroot}%{_sysconfdir}/syslog-ng/conf.d/slapd.conf
|
|
|
|
install -d %{buildroot}%{_datadir}/starlingx
|
|
install -m 644 slapd.service %{buildroot}%{local_systemd_system}/slapd.service
|
|
install -m 644 slapd.sysconfig %{buildroot}%{_datadir}/starlingx/slapd.sysconfig
|
|
|
|
%post
|
|
if [ $1 -eq 1 ] ; then
|
|
cp -f %{_datadir}/starlingx/slapd.sysconfig %{_sysconfdir}/sysconfig/slapd
|
|
chmod 644 %{_unitdir}/slapd
|
|
fi
|
|
|
|
%files
|
|
%defattr(-,root,root)
|
|
%license LICENSE
|
|
%{_sysconfdir}/rc.d/init.d/openldap
|
|
%{_sysconfdir}/openldap/slapd.conf
|
|
%{_sysconfdir}/openldap/initial_config.ldif
|
|
%{_sysconfdir}/openldap/certs.ldif
|
|
%{_sysconfdir}/syslog-ng/conf.d/slapd.conf
|
|
%{local_systemd_system}/slapd.service
|
|
%{_datadir}/starlingx/slapd.sysconfig
|