colin/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

nixos/sssd-ldap: verify that passing secrets via env works

Browse Source
This commit is contained in:
Maximilian Bosch 2022-08-18 11:37:43 +02:00
parent 2f0bd926ea
commit 204d32c5c1
No known key found for this signature in database
GPG Key ID: 9A6EEA275CA5BE0A
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
nixos/tests/sssd-ldap.nix
View File

@ -67,6 +67,8 @@ in import ./make-test-python.nix ({pkgs, ...}: {
services.sssd = {
enable = true;
# just for testing purposes, don't put this into the Nix store in production!
environmentFile = "${pkgs.writeText "ldap-root" "LDAP_BIND_PW=${ldapRootPassword}"}";
config = ''
[sssd]
config_file_version = 2
@ -80,7 +82,7 @@ in import ./make-test-python.nix ({pkgs, ...}: {
ldap_search_base = ${dbSuffix}
ldap_default_bind_dn = cn=${ldapRootUser},${dbSuffix}
ldap_default_authtok_type = password
ldap_default_authtok = ${ldapRootPassword}
ldap_default_authtok = $LDAP_BIND_PW
'';
};
};