GNU bug report logs - #52578
[PATCH] updating openldap and adding service definition

Previous Next

Package: guix-patches;

Reported by: Jean-Francois GUILLAUME <Jean-Francois.Guillaume <at> univ-nantes.fr>

Date: Fri, 17 Dec 2021 15:07:01 UTC

Severity: normal

Tags: patch

Full log

Message #47 received at 52578 <at> debbugs.gnu.org (full text, mbox):

From: Jean-Francois GUILLAUME <Jean-Francois.Guillaume <at> univ-nantes.fr>
To: Ludovic Courtès <ludovic.courtes <at> inria.fr>
Cc: 52578 <at> debbugs.gnu.org, zimoun <zimon.toutoune <at> gmail.com>
Subject: Re: [bug#52578] [PATCH v2 0/2] OpenLDAP service
Date: Wed, 22 May 2024 12:18:26 +0200

Hello,

> Damn, it’s been two years already since you submitted these OpenLDAP
> patches. 😱

Well, damn the time fly fast...

> You probably had problems with the NSS plugins to get LDAP user/group
> lookups working.  I have good news: <https://issues.guix.gnu.org/70992>
> probably fixes that.

We indeed had a problème with lookup, we did trace it back to the 
libnss-ldap not in the correct path. We are doing a quick and dirty fix 
for now using our rc-local service :
> mount -o remount,rw /gnu/store
> echo 'export LD_LIBRARY_PATH="/run/current-system/profile/lib"' >> 
> /run/current-system/profile/etc/profile
> echo " " >> /run/current-system/profile/etc/profile
> mount -o remount,ro /gnu/store

Theses services indeed need some love, especially on the config file 
part. At glicid we are building it by using split files :
> (define slapd-part-1a (call-with-input-file 
> "../common/conf/slapd-part-01-a.conf" get-string-all))
> (define openldap-modules-path (string-append "modulepath " (with-store 
> store (package-output store glicid:openldap)) "/libexec/openldap"))
> (define slapd-part-1b (call-with-input-file 
> "../common/conf/slapd-part-01-b.conf" get-string-all))
> (define slapd-part-serverid (call-with-input-file 
> "./conf/serverID.conf" get-string-all))
> (define slapd-part-2 (call-with-input-file 
> "../common/conf/slapd-part-02.conf" get-string-all))
> (define slapd-part-syncrepl (call-with-input-file 
> "./conf/syncrepl.conf" get-string-all))
> (define slapd-part-3 (call-with-input-file 
> "../common/conf/slapd-part-03.conf" get-string-all))
> (define slapd-conf-file (plain-file "slapd-merged.conf"
>                                     (string-append slapd-part-1a
>                                                    
> openldap-modules-path
>                                                    slapd-part-1b
>                                                    slapd-part-serverid
>                                                    slapd-part-2
>                                                    slapd-part-syncrepl
>                                                    slapd-part-3)))

But it definitively need some love to have a proper config file builder 
(way above my current guix/guile expertise).

---
Cordialement,
Jean-François GUILLAUME

Ingénieur Systèmes, Réseaux, Virtualisation
Plateforme Bioinformatique BiRD, GLiCID, Nantes Université, CHU Nantes, 
CNRS, Inserm, BioCore, US16, SFR Bonamy, F

tél : 02-28-08-00-57 (320057)
mail: Jean-Francois.Guillaume <at> univ-nantes.fr

Bâtiment 06, IRS UN - 8 quai Moncousu - BP 70721 - 44007 Nantes Cedex 1
https://www.pf-bird.univ-nantes.fr/
https://clam.glicid.fr/
https://www.univ-nantes.fr/
This bug report was last modified 1 year and 22 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.