Refactored ldap implementation for ssh keys

2025-09-05 18:01:40 +02:00 · 2025-06-27 16:41:10 +02:00
parent bb73e948d3
commit 40edaa52ad
22 changed files with 167 additions and 67 deletions
--- a/roles/docker-gitea/tasks/setup/ldap.yml
+++ b/roles/docker-gitea/tasks/setup/ldap.yml
@@ -7,7 +7,7 @@
        --host "{{ ldap.server.domain }}" \
        --port {{ ldap.server.port }} \
        --security-protocol "{{ ldap.server.security | trim or 'unencrypted' }}" \
-        --bind-dn "{{ ldap.dn.administrator }}" \
+        --bind-dn "{{ ldap.dn.administrator.data }}" \
        --bind-password "{{ ldap.bind_credential }}" \
        --user-search-base "{{ ldap.dn.users }}" \
        --user-filter "{{ ldap.filters.users.login }}" \
@@ -51,7 +51,7 @@
        --host "{{ ldap.server.domain }}" \
        --port {{ ldap.server.port }} \
        --security-protocol "{{ ldap.server.security | trim or 'unencrypted' }}" \
-        --bind-dn "{{ ldap.dn.administrator }}" \
+        --bind-dn "{{ ldap.dn.administrator.data }}" \
        --bind-password "{{ ldap.bind_credential }}" \
        --user-search-base "{{ ldap.dn.users }}" \
        --user-filter "(&(objectClass=inetOrgPerson)(uid=%s))" \
--- a/roles/docker-gitea/templates/env.j2
+++ b/roles/docker-gitea/templates/env.j2
@@ -46,7 +46,7 @@ GITEA__security__INSTALL_LOCK=true # Locks the installation page

 # (De)activate OIDC
 GITEA__openid__ENABLE_OPENID_SIGNUP={{ applications | is_feature_enabled('oidc',application_id) | lower }}
-GITEA__openid__ENABLE_OPENID_SIGNUP={{ applications | is_feature_enabled('oidc',application_id) | lower }}
+GITEA__openid__ENABLE_OPENID_SIGNIN={{ applications | is_feature_enabled('oidc',application_id) | lower }}

 {% if applications | is_feature_enabled('oidc',application_id) or applications | is_feature_enabled('ldap',application_id) %}