First commit

This commit is contained in:
2025-06-06 12:18:24 -05:00
commit 42bed4c90c
7 changed files with 361 additions and 0 deletions

View File

@ -0,0 +1,19 @@
dn: dc=${LDAP_DOMAIN}
objectClass: top
objectClass: dcObject
objectClass: organization
o: ${LDAP_ORGANISATION}
dc: ${LDAP_DOMAIN}
dn: ou=users,dc=${LDAP_DOMAIN}
objectClass: organizationalUnit
ou: users
dn: cn=John Doe,ou=users,dc=${LDAP_DOMAIN}
objectClass: inetOrgPerson
cn: John Doe
sn: Doe
givenName: John
uid: jdoe
mail: jdoe@${LDAP_DOMAIN}
userPassword: ${LDAP_USER_PASSWORD}

View File

@ -0,0 +1,24 @@
serve:
public:
port: 4444
admin:
port: 4445
dsn: memory
log:
level: debug
oauth2:
expose_internal_errors: true
skip_consent_screen: false
urls:
self:
base: ${HYDRA_ISSUER_URL}/
login:
auth_url: http://127.0.0.1/login.php?login_challenge={{login_challenge}}
consent:
consent_url: http://127.0.0.1/consent.php?consent_challenge={{consent_challenge}}
post_logout_redirect:
to: http://127.0.0.1/logout.php

View File

@ -0,0 +1,20 @@
<?php
// templates/lam.conf.php.tpl
/**
* LDAP Account Manager (LAM) configuration
* We do NOT store any passwords here. We read them from env vars at runtime.
*/
$config->db['type'] = "none"; // No SQL DB for LAM (read-only mode)
$config->auth_mode = "session"; // LAMs own login screen (used for Hydras login)
$config->ldap_host = "ldap://127.0.0.1";
$config->ldap_port = 389;
$config->ldap_base = "dc=${LDAP_DOMAIN}";
$config->ldap_bind_id = "${LAM_BIND_DN}";
$config->ldap_bind_pass = "${LAM_BIND_PASSWORD}";
$config->language = "en";
$config->realm = "IdentityManagement";
?>