COB OpenLDAP Docker Image for testing

Based on 'rroemhild' Docker LDAP Testing Server Repo

Usage

# Docker Image:
docker pull bostongov/ldap-sampling
docker run --privileged -d -p 389:389 bostongov/ldap-sampling

# OR

# Repo: Use this method if you plan on running the node server
git clone [email protected]:CityOfBoston/ldap-sampling.git
# cd into the directory
docker build -t ldap-mock-1 --no-cache . && docker run --privileged -d -p 389:389 --name ldap-mock-1 ldap-mock-1

Requests

# Search on `CN`
ldapsearch -x -H ldap://localhost:388 -b "dc=boston,dc=cob" '(cn=000296)'
# The request above request all and filters by the provided 'cn'
# ----
# filter: (cn=000296)
# requesting: ALL
# ----
# -b basedn  base dn for search: "dc=boston,dc=cob"


# Add User
ldapadd -x -D cn=admin,dc=boston,dc=cob -H ldap://localhost:388 -w 'GoodNewsEveryone' <<!
dn: cn=Celes Chere, cn=Internal Users,dc=boston,dc=cob
objectClass: inetorgperson
objectClass: top
objectClass: organizationalPerson
objectClass: person
employeetype: Full-Time
mail: [email protected]
sn: Chere
givenname: Celes
cn: Celes Chere
uid: Celes Chere
!
# Binding DN: 'cn=admin,dc=boston,dc=dob'
# Group/Ldap Password: -w 'GoodNewsEveryone'
# Fields between <<! and ! set the entries attributes

# Modify Group, add new member 'uniqueMember'
ldapmodify -x -D cn=admin,dc=boston,dc=cob -H ldap://localhost:388 -w 'GoodNewsEveryone' <<!
dn: cn=ANML02_LostFound,cn=Lagan_Groups,cn=Groups,dc=boston,dc=cob
changetype: modify
add: uniquemember
uniquemember: cn=132367,cn=Internal Users,dc=boston,dc=cob
!

LDAP JS

We use ldapjs to interact with the Active Directory System we just stood up with Docker. We use Hapi.js to standup a node web server at http://localhost:8000. These are some of the commands that can be run against ldapjs to fetch and modify Groups.

Postman Workspace

# POST Fetch All Groups: localhost:8000/manage-groups/search/groups
curl --location --request POST "localhost:8000/manage-groups/search/groups" \
  --header "Content-Type: application/x-www-form-urlencoded" \
  --data "filter=%28objectClass%3DgroupOfUniqueNames%29&attributes=%20dc%2Ccn%2CuniqueMember"

# POST Get Groups by name (3 letter min): localhost:8000/manage-groups/search/groups
curl --location --request POST "localhost:8000/manage-groups/search/groups" \
  --header "Content-Type: application/x-www-form-urlencoded" \
  --data "filter=%28%26%28objectClass%3DgroupOfUniqueNames%29%28cn%3DBP*%29%29&attributes=%20dc%2Ccn%2CuniqueMember"

# POST Find User by 'cn': localhost:8000/manage-groups/search/person
curl --location --request POST "localhost:8000/manage-groups/search/person" \
  --header "Content-Type: application/x-www-form-urlencoded" \
  --data "filter=%28%26%28objectClass%3DorganizationalPerson%29%28cn%3DLag*%29%29"

# POST Find User by 'displayName': localhost:8000/manage-groups/search/person
curl --location --request POST "localhost:8000/manage-groups/search/person" \
  --header "Content-Type: application/x-www-form-urlencoded" \
  --data "filter=%28%26%28objectClass%3DorganizationalPerson%29%28cn%3DLag*%29%29"

# PATCH Add uniqueMember - localhost:8000/manage-groups/update/group
curl --location --request PATCH "localhost:8000/manage-groups/update/group" \
  --header "Content-Type: application/x-www-form-urlencoded" \
  --data "dn=cn%3DBPD_Administrative%2Ccn%3DLagan_Groups%2Ccn%3DGroups%2Cdc%3Dboston%2Cdc%3Dcob&operation=add&uniqueMember=cn%3DFreya%20Crescent%2Ccn%3DInternal%20Users%2Cdc%3Dboston%2Cdc%3Dcob"

# PATCH Delete Group uniqueMember - localhost:8000/manage-groups/update/group
curl --location --request PATCH "localhost:8000/manage-groups/update/group" \
  --header "Content-Type: application/x-www-form-urlencoded" \
  --data "dn=cn%3DBPD_Administrative%2Ccn%3DLagan_Groups%2Ccn%3DGroups%2Cdc%3Dboston%2Cdc%3Dcob&operation=delete&uniqueMember=cn%3DFreya%20Crescent%2Ccn%3DInternal%20Users%2Cdc%3Dboston%2Cdc%3Dcob"

---

LDAP structure

Base DN: dc=boston,dc=cob

Admin	Secret
cn=admin,dc=boston,dc=cob	GoodNewsEveryone

Internal Users

Internal Users: cn=Internal Users,dc=boston,dc=cob

cn=000296,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	000296
sn	Howard
displayName	Terra Howard
givenName	Terra
mail	[email protected]
uid	000296

cn=050086,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	050086
sn	Palazzo
displayName	Kefka Palazzo
givenName	Kefka
mail	[email protected]
uid	050086

cn=052947,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	052947
sn	Harvey
displayName	Cecil Harvey
givenName	Cecil
mail	[email protected]
uid	052947

cn=053342,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	053342
sn	Gainsborough
displayName	Aeris Gainsborough
givenName	Aeris
mail	[email protected]
uid	053342

cn=053355,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	053355
sn	Fair
displayName	Zack Fair
givenName	Zack
mail	[email protected]
uid	053355

cn=054363,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	054363
sn	Wallace
displayName	Barret Wallace
givenName	Barret
mail	[email protected]
uid	054363

cn=081782,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	081782
sn	Trepe
displayName	Quistis Trepe
givenName	Quistis
mail	[email protected]
uid	081782

cn=087028,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	087028
sn	Valentine
displayName	Vincent Valentine
givenName	Vincent
mail	[email protected]
uid	087028

cn=097738,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	097738
sn	Orunitia
displayName	Vivi Orunitia
givenName	Vivi
mail	[email protected]
uid	097738

cn=100992,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	100992
sn	Heartilly
displayName	Rinoa Heartilly
givenName	Rinoa
mail	[email protected]
uid	100992

cn=132367,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	132367
sn	Strife
displayName	Cloud Strife
givenName	Cloud
mail	[email protected]
uid	132367

cn=143523,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	143523
sn	Tribal
displayName	Zidane Tribal
givenName	Zidane
mail	[email protected]
uid	143523

cn=Celes Chere,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	Celes Chere
sn	Tribal
displayName	Celes Chere
givenName	Celes
mail	[email protected]
uid	Celes Chere

cn=Edea Kramer,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	Edea Kramer
sn	Kramer
displayName	Edea Kramer
givenName	Edea
mail	[email protected]
uid	Edea Kramer

cn=Freya Crescent,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	Edea Kramer
sn	Kramer
displayName	Edea Kramer
givenName	Edea
mail	[email protected]
uid	Edea Kramer

cn=Garnet Alexandros,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	Edea Kramer
sn	Alexandros
displayName	Garnet Alexandros
givenName	Garnet
mail	[email protected]
uid	Garnet Alexandros

cn=Ignis Scientia,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	Ignis Scientia
sn	Scientia
displayName	Ignis Scientia
givenName	Ignis
mail	[email protected]
uid	Ignis Scientia

cn=Laguna Loire,ou=Internal Users,dc=boston,dc=cob

Attribute	Value
objectClass	inetOrgPerson
cn	Laguna Loire
sn	Scientia
displayName	Laguna Loire
givenName	Ignis
mail	[email protected]
uid	Ignis Scientia