diff options
-rw-r--r-- | modules/mediawiki/manifests/init.pp | 2 | ||||
-rw-r--r-- | modules/mediawiki/templates/LocalSettings.php | 23 |
2 files changed, 24 insertions, 1 deletions
diff --git a/modules/mediawiki/manifests/init.pp b/modules/mediawiki/manifests/init.pp index db982326..0b091e6f 100644 --- a/modules/mediawiki/manifests/init.pp +++ b/modules/mediawiki/manifests/init.pp @@ -29,7 +29,6 @@ class mediawiki { } # TODO create the ldap user - $ldap_password = extlookup('mediawiki_ldap','x') # TODO write the web configuration apache::vhost_base { "wiki.$domain": @@ -84,6 +83,7 @@ class mediawiki { refreshonly => true, onlyif => "test -d $wiki_root/config", } + $ldap_password = extlookup('mediawiki_ldap','x') file { "$wiki_root/LocalSettings.php": ensure => present, diff --git a/modules/mediawiki/templates/LocalSettings.php b/modules/mediawiki/templates/LocalSettings.php index 3e0fe5d2..8a0a60e4 100644 --- a/modules/mediawiki/templates/LocalSettings.php +++ b/modules/mediawiki/templates/LocalSettings.php @@ -123,4 +123,27 @@ $wgDiff3 = "/usr/bin/diff3"; # sure that cached pages are cleared. $wgCacheEpoch = max( $wgCacheEpoch, gmdate( 'YmdHis', @filemtime( __FILE__ ) ) ); +require_once 'extensions/LdapAuthentication.php'; +$wgAuth = new LdapAuthenticationPlugin(); + +$wgLDAPDomainNames = array( 'ldap'); +#TODO make it workable with more than one server +$wgLDAPServerNames = array( 'ldap' => 'ldap.<%= domain %>' ); + +$wgLDAPSearchStrings = array( 'ldap' => 'uid'); + +$wgLDAPEncryptionType = array( 'ldap' => 'tls'); + +$wgLDAPBaseDNs = array( 'ldap' => 'ou=People,<%= dc_suffix %>'); + +$wgLDAPProxyAgent = array( 'ldap' => 'cn=mediawiki-alamut,ou=System Accounts,<%= dc_suffix %>'); + +$wgLDAPProxyAgentPassword = array( 'ldap' => '<%= ldap_password %>' ); + +$wgLDAPUseLDAPGroups = array( "ldap" => true ); +$wgLDAPGroupNameAttribute = array( "ldap" => "cn" ); + +$wgLDAPLowerCaseUsername = array( "ldap" => true ); + +$wgMinimalPasswordLength = 1; |