Puppet Class: apache::mod::ldap

Defined in:
manifests/mod/ldap.pp

Summary

Installs and configures `mod_ldap`.

Overview

Note:

Unsupported platforms: CentOS: 8; RedHat: 8, 9

Examples:

class { 'apache::mod::ldap':
  ldap_trusted_global_cert_file => '/etc/pki/tls/certs/ldap-trust.crt',
  ldap_trusted_global_cert_type => 'CA_DER',
  ldap_trusted_mode             => 'TLS',
  ldap_shared_cache_size        => 500000,
  ldap_cache_entries            => 1024,
  ldap_cache_ttl                => 600,
  ldap_opcache_entries          => 1024,
  ldap_opcache_ttl              => 600,
}

Parameters:

  • apache_version (Optional[String]) (defaults to: undef)

    Used to verify that the Apache version you have requested is compatible with the module.

  • package_name (Optional[String]) (defaults to: undef)

    Specifies the custom package name.

  • ldap_trusted_global_cert_file (Optional[String]) (defaults to: undef)

    Sets the file or database containing global trusted Certificate Authority or global client certificates.

  • ldap_trusted_global_cert_type (String) (defaults to: 'CA_BASE64')

    Sets the certificate parameter of the global trusted Certificate Authority or global client certificates.

  • ldap_shared_cache_size (Optional[Integer]) (defaults to: undef)

    Size in bytes of the shared-memory cache

  • ldap_cache_entries (Optional[Integer]) (defaults to: undef)

    Maximum number of entries in the primary LDAP cache

  • ldap_cache_ttl (Optional[Integer]) (defaults to: undef)

    Time that cached items remain valid (in seconds).

  • ldap_opcache_entries (Optional[Integer]) (defaults to: undef)

    Number of entries used to cache LDAP compare operations

  • ldap_opcache_ttl (Optional[Integer]) (defaults to: undef)

    Time that entries in the operation cache remain valid (in seconds).

  • ldap_trusted_mode (Optional[String]) (defaults to: undef)

    Specifies the SSL/TLS mode to be used when connecting to an LDAP server.

  • ldap_path (String) (defaults to: '/ldap-status')

    The server location of the ldap status page.

See Also:



51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
 
# File 'manifests/mod/ldap.pp', line 51

class apache::mod::ldap (
  Optional[String] $apache_version                = undef,
  Optional[String] $package_name                  = undef,
  Optional[String] $ldap_trusted_global_cert_file = undef,
  String $ldap_trusted_global_cert_type           = 'CA_BASE64',
  Optional[Integer] $ldap_shared_cache_size       = undef,
  Optional[Integer] $ldap_cache_entries           = undef,
  Optional[Integer] $ldap_cache_ttl               = undef,
  Optional[Integer] $ldap_opcache_entries         = undef,
  Optional[Integer] $ldap_opcache_ttl             = undef,
  Optional[String] $ldap_trusted_mode             = undef,
  String $ldap_path                               = '/ldap-status',
) {
  include apache
  $_apache_version = pick($apache_version, $apache::apache_version)
  ::apache::mod { 'ldap':
    package => $package_name,
  }
  # Template uses $_apache_version
  file { 'ldap.conf':
    ensure  => file,
    path    => "${apache::mod_dir}/ldap.conf",
    mode    => $apache::file_mode,
    content => template('apache/mod/ldap.conf.erb'),
    require => Exec["mkdir ${apache::mod_dir}"],
    before  => File[$apache::mod_dir],
    notify  => Class['apache::service'],
  }
}