django-ldap-academia-ou-manager
Django Admin manager for Academia Users with eduPerson schema and SCHAC (SCHema for ACademia).
Readme
Django Admin manager for Academia Users, usable with an OpenLDAP Server configured with eduPerson, SCHAC (SCHema for ACademia) and Samba schema. It also needs PPolicy overlay and some other schemas as described as follow.
Tested on Debian9 and Debian 10.
Note: Labels and strings can be localized with .po dictionaries (gettext). See i18n documentation
For those who need to setup a LDAP server for development or production use:
pip3 install ansible
git clone https://github.com/peppelinux/ansible-slapd-eduperson2016.git
cd ansible-slapd-eduperson2016
ansible-playbook -i "localhost," -c local playbook.yml
Note: The playbook will backup any existing slapd installations in backups folder.
pip3 install virtualenv
export PROJ_NAME=django-ldap-academia-ou-manager
export DEST_DIR=$PROJ_NAME.env
virtualenv -p python3 $DEST_DIR
source $dest_dir/bin/activate
pip3 install django
apt install python3-dev python3-pip python3-setuptools
apt install libsasl2-dev python-dev libldap2-dev libssl-dev
pip install git+https://github.com/peppelinux/django-ldapdb.git
pip install git+https://github.com/peppelinux/pySSHA-slapd.git
pip install pycountry
pip install git+https://github.com/silentsokolov/django-admin-rangefilter.git
pip install git+https://github.com/peppelinux/django-ldap-academia-ou-manager.git
django-admin startproject $PROJ_NAME
cd $PROJ_NAME
Note: It uses a django-ldapdb fork to handle readonly (non editable) fields.
# pip3 install git+https://github.com/peppelinux/django-ldapdb.git
pip3 install git+https://github.com/peppelinux/django-ldap-academia-ou-manager
Read settings.py and settingslocal.py in the example folder.
In settings.py do the following:
# settings.py
if 'ldap_peoples' in INSTALLED_APPS:
from ldap_peoples.settings import *
# urls.py
if 'ldap_peoples' in settings.INSTALLED_APPS:
import ldap_peoples.urls
urlpatterns += path('', include(ldap_peoples.urls, namespace='ldap_peoples')),
One of the advantage of using the ORM is the possibility to make these kind of queries to a LDAP database.
from ldap_peoples.models import LdapAcademiaUser
lu = LdapAcademiaUser.objects.get(uid='mario')
# as multivalue
lu.eduPersonAffiliation.append('alumn')
lu.save()
lu.set_password('secr3tP4ss20rd')
# search into multivalue field
other_lus = LdapAcademiaUser.objects.filter(mail_contains='unical')
# user creation
import datetime
d = {'cn': 'pedppe',
'displayName': 'peppde Rossi',
'eduPersonAffiliation': ['faculty', 'member'],
'eduPersonEntitlement': ['urn:mace:terena.org:tcs:escience-user',
'urn:mace:terena.org:tcs:personal-user'],
'eduPersonOrcid': '',
'eduPersonPrincipalName': 'grodsfssi@unical',
'eduPersonScopedAffiliation': ['member@testunical.it', 'staff@testunical.it'],
'givenName': 'peppe',
'mail': ['peppe44.grossi@testunical.it', 'pgros44si@edu.testunical.it'],
'sambaNTPassword': 'a2137530237ad733fdc26d5d7157d43f',
'schacHomeOrganization': 'testunical.it',
'schacHomeOrganizationType': ['educationInstitution', 'university'],
'schacPersonalUniqueID': ['urn:schac:personalUniqueID:IT:CF:CODICEFISCALEpe3245ppe'],
'schacPlaceOfBirth': '',
'sn': 'grossi',
'telephoneNumber': [],
'uid': 'perrrppe',
'userPassword': '{SHA512}oMKZtxqeWdXrsHkX5wYBo1cKoQPpmnu2WljngOyQd7GQLR3tsxsUV77aWV/k1x13m2ypytR2JmzAdZDjHYSyBg=='}
u = LdapAcademiaUser.objects.create(**d)
u.delete()
./manage.py test ldap_peoples.tests.LdapAcademiaUserTestCase
Django-ldapdb related
FAQs
Django Admin manager for Academia Users with eduPerson schema and SCHAC (SCHema for ACademia).
We found that django-ldap-academia-ou-manager demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
LDAPjs, an LDAP Client and Server API for Node.js, was decommissioned after its maintainer received an abusive email from a user, raising concerns about this form of abuse as a potential attack vector.
Security News
CISA launched a new project called Vulnrichment to enrich CVEs with details that help prioritize patching and mitigation efforts, as the NVD backlog of unenriched CVEs awaiting analysis surpasses 10,000.
Security News
Socket is joining forces with CISA and other industry leaders at the RSA Conference to sign the Secure by Design pledge, committing to uphold the highest security standards in our products.