Allowing own replication via LDAP_REPLICATION=own #535. Thanks to @sistason !
Seeding from internal path is now complete. #361. Thanks to @dbck !
Changed
Update openldap 2.4.50 to 2.4.57
Upgrade baseimage to light-baseimage:1.3.2. Thanks to @heidemn !
Replace mail.schema for postfix-book.schema #450. Thanks to @vivacarvajalito !
Replace zarafa.schema for kopano.schema
Removed
mmc schemas (dhcp.schema, dnszone.schema, mail.schema, mmc.schema, quota.schema) and radius.schema
Fixed
Few small typos #536. Thanks to @timgates42 !
Out of date api in the using-secrets kubernetes yaml #527. Thanks to @joshuacox !
Custom ldap file and schema #481. Thanks to @Os-carsun !
v1.4.0
3 years ago
Added
Allow setting ports on ldap and ldaps #403. Thanks to @chirauki !
Address firewall issues on RHEL in README #394. Thanks to @BirkhoffLee !
Ensure ca certs are up to date #387. Thanks to @Jyrno42 !
Install slapd-contrib to include pbkdf2 pw support #365. Thanks to @col-panic !
Seeding from internal path. #361. Thanks to @dbck !
Enable openldap uid/gid to be specified at runtime #336. Thanks to @lj020326 !
Changes
Update openldap 2.4.48 to 2.4.50
LDAP_TLS_PROTOCOL_MIN is deprecated #432. Thanks to @mettacrawler !
Better handling of environment variables checks #382. Thanks to @obourdon !
Fixed
Multi-node replication fixes #420. Thanks to @pcolmer !
Grant root manage access to database #416. Thanks to @olia-dev !
v1.3.0
4 years ago
Added
Multiarch support
Changes
Update openldap 2.4.47 to 2.4.48 #247
Upgrade baseimage to light-baseimage:1.2.0 (debian buster)
v1.2.5
4 years ago
Added
Support for docker secrets #325. Thanks to @anagno !
Add DISABLE_CHOWN environment variable #240
pqChecker lib to check passwords strength with ppolicy pwdCheckModule
Fixed
Fix of incorrectly positioned 'log-helper debug' command #327. Thanks to @turcan !
Fix domain dn #341. Thanks to @obourdon !
v1.2.4
5 years ago
Fixed
Excessive RAM usage on 1.2.2, increased 10x from 1.2.1 #242
Startup issue with 1.2.3 #283
v1.2.3
5 years ago
+10M docker pulls 🎉🎉🎉 thanks to all contributors 💕
Added
GCE statefulset #241
Custom dhparam.pem via environment. #254
Changed
Update openldap 2.4.44 to 2.4.47 #247
Upgrade baseimage to light-baseimage:1.1.2
Fixed
Ldaps port numbers in readme #281
Replication after restart container #264
v1.2.2
5 years ago
Added
Environment variable LDAP_NOFILE to setup a custom ulimit value #237
Fixed
Remove schema ambiguity #204
lidf typo in readme #217
Ignore all the folders started with . #232
Security
Fix self-edit security issue #239
Thanks to Yann Voumard for reporting this and @jonremy for the fix.
v1.2.1
6 years ago
Security
The default "write" access to "*" by "self" in the file "config/bootstrap/ldif/02-security.ldif" allowed anyone to change all the data about himself. This includes the gid and uid numbers what could lead to serious security issues.
This has been changed to olcAccess: to * by self read by dn="cn=admin,{{ LDAP_BASE_DN }}" write by * none"
Thanks to Francesc Escale for reporting this.
v1.2.0
6 years ago
Changed
Use mdb as default backend
Fixed
startup.sh: Ensure SCHEMAS is sorted #193
LDAP_ADMIN_PASSWORD with space breaks container setup #167
v1.1.11
6 years ago
Added
Add krb5-kdc-ldap with doc examples #171
Add support of readonly user in custom bootstrap ldif #162