All notable changes to this project will be documented in this file. The format is based on Keep a Changelog and this project adheres to Semantic Versioning.
This release fixes an issue when setting the file descriptor limit on Debian systems.
- Fix limits config dir on Debian.
This release fixes a replication issue for consumers and hubs.
- Set the replica id for consumers and hubs.
This release adds some additional fixes for replication.
- Fixed a bug where the nsDS5ReplicaRoot wasn't being set correctly in the replication agreement.
- Cleaned up replication attributes.
- Made the replication agreement cn more explicit.
Fixed a bug with replication logic.
- Check for fqdn when setting replication.
This release adds additional support for StartTLS. ldapadd and ldapmodify actions now connect via the URI, and can connect with StartTLS via the starttls
param. nsDS5ReplicaTransportInfo can be set to 'TLS' as well.
- ldapadd / ldapmodify commands now connect via URI.
- ldapadd / ldapmodify commands now can connect with StartTLS.
This release adds the ability to customize nsDS5ReplicaTransportInfo for replication. It defaults to 'LDAP', but can be set to 'SSL' via the replica_transport
param.
- Parameterize replication transport.
- ldapadd / ldapmodify commands now default to port 389 instead of 636.
This release adds the ability to specify the minssf setting that controls StartTLS for non-SSL connections.
- Parameterize nsslapd-minssf.
- Default nsslapd-minssf value changed to package default.
- ldif files are passed to ldapmodify directly instead of piping from stdout.
This release adds the ability to manage the content of both ds_389::add
and ds_389::modify
ldif files. This allows for better secret management and the use of template(), inline_template(), or inline_epp() when declaring these defined types.
- Expose the content of an ldif file to allow for template-based management.
- Clean up references to the replication manager.
- The
bind_dn_pass
param for replication has been replaced withreplication_pass
. - Added
replication_user
which defaults to 'Replication Manager'. bind_dn
is now optional, and allows the bind DN for replication to be overriden if needed.
- Initial release.