openldap

package module

v0.12.1 Latest Latest Go to latest Published: Feb 20, 2024 License: MPL-2.0 Imports: 27 Imported by: 3

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/hashicorp/vault-plugin-secrets-openldap

Links

Open Source Insights

README ¶

Vault Plugin: OpenLDAP Secrets Backend

This is a standalone backend plugin for use with Hashicorp Vault. This plugin provides OpenLDAP functionality to Vault.

Please note: We take Vault's security and our users' trust very seriously. If you believe you have found a security issue in Vault, please responsibly disclose by contacting us at security@hashicorp.com.

Quick Links

Vault Website: https://developer.hashicorp.com/vault/docs
OpenLDAP Docs: https://developer.hashicorp.com/vault/docs/secrets/ldap
Main Project Github: https://www.github.com/hashicorp/vault

Getting Started

This is a Vault plugin and is meant to work with Vault. This guide assumes you have already installed Vault and have a basic understanding of how Vault works.

Otherwise, first read this guide on how to get started with Vault.

To learn specifically about how plugins work, see documentation on Vault plugins.

Usage

Please see documentation for the plugin on the Vault website.

This plugin is currently built into Vault and by default is accessed at openldap. To enable this in a running Vault server:

$ vault secrets enable openldap
Success! Enabled the openldap secrets engine at: openldap/

Documentation ¶

Index ¶

func Backend(client ldapClient) *backend
func Factory(ctx context.Context, conf *logical.BackendConfig) (logical.Backend, error)
type CheckOut
type Client
- func NewClient(logger hclog.Logger) *Client

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func Backend ¶

func Backend(client ldapClient) *backend

func Factory ¶

func Factory(ctx context.Context, conf *logical.BackendConfig) (logical.Backend, error)

Types ¶

type CheckOut ¶ added in v0.9.0

type CheckOut struct {
	IsAvailable         bool   `json:"is_available"`
	BorrowerEntityID    string `json:"borrower_entity_id"`
	BorrowerClientToken string `json:"borrower_client_token"`
}

CheckOut provides information for a service account that is currently checked out.

type Client ¶

type Client struct {
	// contains filtered or unexported fields
}

func NewClient ¶

func NewClient(logger hclog.Logger) *Client

func (*Client) Execute ¶ added in v0.4.0

func (c *Client) Execute(conf *client.Config, entries []*ldif.Entry, continueOnError bool) (err error)

func (*Client) UpdateDNPassword ¶ added in v0.9.0

func (c *Client) UpdateDNPassword(conf *client.Config, dn string, newPassword string) error

UpdateDNPassword updates the password for the object with the given DN.

func (*Client) UpdateUserPassword ¶ added in v0.9.0

func (c *Client) UpdateUserPassword(conf *client.Config, username string, newPassword string) error

UpdateUserPassword updates the password for the object with the given username.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
client
tools
cmd
vault-plugin-secrets-openldap
ldapifc

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL