GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → sinnerschrader → account-tool

sinnerschrader / account-tool

Licence: MIT License
Account Tool to Manage LDAP Accounts

Programming Languages

kotlin
9241 projects
HTML
75241 projects
CSS
56736 projects

Labels

ldapspringspring-bootpebble

Projects that are alternatives of or similar to account-tool

horusec-platform
Horusec Platform is a set of web services that integrate with the Horusec CLI to facilitate the visualization and management of found vulnerabilities.
Stars: ✭ 32 (+28%)
Mutual labels:  ldap
paddle
A library simplifying LDAP usage in Elixir projects
Stars: ✭ 46 (+84%)
Mutual labels:  ldap
pebble-dev.github.io
Source for http://pebble-dev.github.io/ AKA http://rebble.io/
Stars: ✭ 43 (+72%)
Mutual labels:  pebble
aspnet-core-ad-authentication
ASP.NET Core Active Directory authentication use LDAP
Stars: ✭ 21 (-16%)
Mutual labels:  ldap
k8s-idm-lab
Kubernetes Identity Management Lab
Stars: ✭ 20 (-20%)
Mutual labels:  ldap
JNDIMonitor
一个LDAP请求监听器,摆脱dnslog平台
Stars: ✭ 177 (+608%)
Mutual labels:  ldap
spring-data-ldap
Repository abstraction for Spring LDAP
Stars: ✭ 53 (+112%)
Mutual labels:  ldap
pebblify
Pebblify is a full-featured Spotify app for Pebble watches, made with PebbleJS ⌚🎶 https://apps.rebble.io/en_US/application/5ff3b52b1e6bb11b9eee5c5a
Stars: ✭ 16 (-36%)
Mutual labels:  pebble
ldapconsole
The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
Stars: ✭ 25 (+0%)
Mutual labels:  ldap
werther
An Identity Provider for ORY Hydra over LDAP
Stars: ✭ 103 (+312%)
Mutual labels:  ldap
Auth
Manage multiple user authentication databases from a central web application
Stars: ✭ 17 (-32%)
Mutual labels:  ldap
authentication
A framework agnostic authentication library based on PSR standards
Stars: ✭ 19 (-24%)
Mutual labels:  ldap
OpenAM
OpenAM is an open access management solution that includes Authentication, SSO, Authorization, Federation, Entitlements and Web Services Security.
Stars: ✭ 476 (+1804%)
Mutual labels:  ldap
seahorse
ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)
Stars: ✭ 31 (+24%)
Mutual labels:  ldap
kube-ldap
A Webhook Token Authentication plugin for kubernetes to use LDAP as authentication source
Stars: ✭ 29 (+16%)
Mutual labels:  ldap
ntlmrelayx-prettyloot
Convert the loot directory of ntlmrelayx into an enum4linux like output
Stars: ✭ 20 (-20%)
Mutual labels:  ldap
log4shell-tools
Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046
Stars: ✭ 55 (+120%)
Mutual labels:  ldap
Server-Help
💻 This VSTO Add-In allows the user to ping a list of servers and creates a file for Microsoft Remote Desktop Manager an Excel table. This is used for quickly determining which servers are offline in a list. It is written in 3 different versions as a VSTO Add-In in C# and VB.NET as well as a VBA Add-In.
Stars: ✭ 21 (-16%)
Mutual labels:  ldap
service-desk
Application for support team who need to check and reset user passwords
Stars: ✭ 23 (-8%)
Mutual labels:  ldap
kube-ldap-authn
Kubernetes LDAP authentication service
Stars: ✭ 41 (+64%)
Mutual labels:  ldap
View All Similar Projects ➔

Build Status Known Vulnerabilities

SinnerSchrader Account Tool

Logo

The SinnerSchrader Account Tool is a user management and self service application for OpenLDAP. It allows you to create and manage users and groups with ease.

Alt Text

Setup and guidelines

Run the application

You can also login with any other user contained in the test data set. The password is always testuser. Please refer to src/main/resources/ldap/data/03-testuser.ldif for further details.

LDAP structure

Base

The LDAP root is dc=example,dc=org where all entries are stored. This can be configured in your yml file. This tool can handle multiple companies, where each company has a sub-tree with it's own ou=users entry. The groups are still stored globally under ou=groups to allow a collaboration on the same project.

Groups

All groups have to be created twice. One with a team admin prefix and one with a team prefix. The idea of it, is that some project admins can administrate the team. The team admin groups are always the administrator groups of the normal customer projectteam Group. The absolute fallback is always the group you defined in ldap.permissions.admins, if no other admin group was found.

Password checks via zxcvbn

We are using the zxcvbn4j library, which is a java port of the original lib. You can find it on GitHub: https://github.com/nulab/zxcvbn4j. In the folder src/resources/zxcvbn we store a dictionary that contains the public top 500 list of bad password ideas. You can find it here.

Files and content

The test data and schema is stored under src/main/resources/ldap/* with two folders inside. The folder schema contains the LDAP schema files in an LDIF format which is required to validate the data which is stored in the data folder.

Schema files

We currently use some of the default and publicly provided schema files (01-system to 06-ppolicy), but we require some extensions. The custom extension is the integration of the Samba schema to handle some Samba shares. The schema file 08-szz provides a custom extension for handling employees over time.

Data files
  • 01-company-structure.ldif
    • Contains all OUs (Organizational Units) which describe the base company structure
  • 02-groups.ldif
    • many groups which are used for customers / project Teams and third party services for example Jira, Git, etc.
  • 03-testuser.ldif
    • A dump of users, with reseted passwords to default values. Every user has the password testuser in the embeded LDAP.
    • The reset password is required, to perform several checks about the permissions, because the tool has to handle different views for different permissions.
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].