Changeset 1818 for trunk/server

Timestamp:

Apr 28, 2011, 7:45:54 PM (13 years ago)

Author:

mitchb

Message:

Move 389-ds's slapd-scripts.socket to /var/run

It turns out that mode 777 directories containing files
that daemons use is... not the most brilliant thing we've
done.  389-ds has finally decided to insist on clobbering
the permissions of /var/run/dirsrv to be less foolish,
but several of our daemons and client programs need to
be able to access the LDAP daemon's socket.  Come visit
it in its new home, conveniently located just two directories
below the root.

Location:

trunk/server

Files:

• common/oursrc/execsys/ldapize.pl (modified) (1 diff)
• doc/install-ldap (modified) (2 diffs)
• fedora/config/etc/httpd/vhosts.d/reify-vhost.py (modified) (1 diff)
• fedora/config/etc/ldap.conf (modified) (1 diff)
• fedora/config/etc/nslcd.conf (modified) (1 diff)
• fedora/config/etc/postfix/virtual-alias-domains-ldap.cf (modified) (1 diff)
• fedora/config/etc/postfix/virtual-alias-maps-ldap.cf (modified) (1 diff)

trunk/server/common/oursrc/execsys/ldapize.pl

@@ -37 +37 @@
     'Net::LDAP::Filter');
 
-my $ldap = Net::LDAP->new("ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/");
+my $ldap = Net::LDAP->new("ldapi://%2fvar%2frun%2fslapd-scripts.socket/");
 $mesg = $ldap->bind();
 $mesg->code && die $mesg->error;

trunk/server/doc/install-ldap

@@ -28 +28 @@
 
 # Inside cn=config.  These changes definitely require a restart.
-nsslapd-ldapifilepath: /var/run/dirsrv/slapd-scripts.socket
+nsslapd-ldapifilepath: /var/run/slapd-scripts.socket
 nsslapd-ldapilisten: on
 nsslapd-syntaxcheck: off
@@ -51 +51 @@
 - chown fedora-ds:fedora-ds /var/run/dirsrv
 - chown fedora-ds /etc/dirsrv/keytab
-- chmod 755 /var/run/dirsrv
 - /sbin/service dirsrv start
 - Use ldapvi -b cn=config to add these indexes (8 of them):

trunk/server/fedora/config/etc/httpd/vhosts.d/reify-vhost.py

@@ -25 +25 @@
 import sys
 
-ll = ldap.initialize("ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/")
+ll = ldap.initialize("ldapi://%2fvar%2frun%2fslapd-scripts.socket/")
 ll.simple_bind_s("", "")
 

trunk/server/fedora/config/etc/ldap.conf

@@ -27 +27 @@
 #uri ldapi://%2fvar%2frun%2fldapi_sock/
 # Note: %2f encodes the '/' used as directory separator
-uri ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/
+uri ldapi://%2fvar%2frun%2fslapd-scripts.socket/
 
 # The LDAP version to use (defaults to 3

trunk/server/fedora/config/etc/nslcd.conf

@@ -131 +131 @@
 #map    group  gidNumber        gid
 # This comment prevents repeated auto-migration of settings.
-uri ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/
+uri ldapi://%2fvar%2frun%2fslapd-scripts.socket/
 base dc=scripts,dc=mit,dc=edu
 base   group  ou=Groups,dc=scripts,dc=mit,dc=edu

trunk/server/fedora/config/etc/postfix/virtual-alias-domains-ldap.cf

@@ -12 +12 @@
 # version 3 is necessary to use ldapi.
 
-server_host = ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/
+server_host = ldapi://%2fvar%2frun%2fslapd-scripts.socket/
 search_base = ou=VirtualHosts,dc=scripts,dc=mit,dc=edu
 query_filter = (&(objectClass=scriptsVhost)(|(scriptsVhostName=%s)(scriptsVhostAlias=%s))(!(scriptsVhostName=scripts.mit.edu)))

trunk/server/fedora/config/etc/postfix/virtual-alias-maps-ldap.cf

@@ -13 +13 @@
 # necessary to use ldapi.
 
-server_host = ldapi://%2fvar%2frun%2fdirsrv%2fslapd-scripts.socket/
+server_host = ldapi://%2fvar%2frun%2fslapd-scripts.socket/
 search_base = ou=VirtualHosts,dc=scripts,dc=mit,dc=edu
 query_filter = (&(objectClass=scriptsVhost)(|(scriptsVhostName=%d)(scriptsVhostAlias=%d))(!(scriptsVhostName=scripts.mit.edu)))