FSR Wiki #40
Loading…
Reference in a new issue
No description provided.
Delete branch "wiki"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
[ ] LDAP(the mediawiki module is kinda broken.)
I'm probably gonna configure this dynamically, like this.
The so called "LDAP Stack" of MediaWiki seems to be in no usable condition. I'll try OpenID Connect (with dex) instead, that is up to date at least.
Weil ich's gerade beim Reboot gesehen habe: mediawiki-init.services sollte erst nach postgresql starten
Patching Portunus is necessary, because the Portunus module hard codes port 636 (ldaps) for dex (dex works with insecure ldap, but strongly discourages it), but we don't have a good way to configure ldaps for postfix yet. So just making slapd serve both insecure ldap and ldaps seems like the best solution for now.
@ -118,0 +66,4 @@"plugin" => "OpenIDConnect","data" => ["providerURL" => "${config.services.portunus.domain}/dex","clientID" => "wiki",can u maybe add some comments here why this is needed ?
@ -118,0 +66,4 @@"plugin" => "OpenIDConnect","data" => ["providerURL" => "${config.services.portunus.domain}/dex","clientID" => "wiki",done
I sort of got group sync to work. Custom groups like e.g. Struktur can be synced in my testing, but syncing MediaWiki's Admin group does not seem to work. If we have a use for syncing Struktur/Finanzen/etc. groups, I can commit what I have so far. I think not needing a special Admin account in MediaWiki would be quite useful, then we could disable the login form and just redirect directly to the OIDC login...
rebased and replaced secrets
had to rebase to resolve the deleted vm secret file