debian/0000775000000000000000000000000012212121203007152 5ustar debian/web2ldap.10000664000000000000000000000332612212121203010740 0ustar .TH WEB2LDAP 1 \" -*- nroff -*- .SH NAME web2ldap \- web interface for LDAP which is also useful on the command line .SH SYNOPSIS .B web2ldap .nh [\fB\-h\fR] [\fB\-?\fR] [\fB\-d \fIon/off\fR] [\fB\-t \fIon/off\fR] [\fB\-s \fIon/off\fR] [\fB\-l \fI[[hostname:]port]\fR] [\fB\-u \fInumeric uid|username\fR] .hy .SH DESCRIPTION This manual page documents web2ldap. web2ldap is a full-featured web-based generic LDAPv3 client featuring an interface accessing and manipulating LDAP servers without the need for configuration. web2ldap has a clean login behavior and includes a schema browser which displays references/dependencies within an LDAPv3 schema. web2ldap code makes no assumptions about the tree structure or LDAP schema and can also be used as a customizable platform for prototyping LDAP administration use-cases. .SH OPTIONS .TP .PD 0 .BI "\-h" .TP .PD 0 .BI "\-? " Print the help message. .TP .PD .BI \-d " on/off" If set to off, web2ldap does not detach from the console after it was invoked. Default: on .TP .PD .BI \-t " on/off" Run multi-threaded HTTP server. If this fails, web2ldap falls back to running a single-threded HTTP server. Default: on .TP .PD .BI \-s " on/off" Run with SSL or not. Default: off .TP .PD .BI \-l " [hostname:]port" Listen to hostname:port. Either hostname:port or port is allowed. Default: your hostname:1760 .TP .PD .BI \-l " numeric uid or username" Switch to given UID or username after binding to socket. Default: Current UID if not started as root. nobody if started as root. .SH AUTHOR web2ldap was written by Michael Ströder . This man page was created by Marc Haber during the process of packaging web2ldap for Debian/GNU Linux debian/changelog0000664000000000000000000000305412212121203011026 0ustar web2ldap (1.1.43~dfsg-1) unstable; urgency=low * Imported Upstream version 1.1.43 * refresh patches * document that this package is for FastCGI/apache use * use new apache authorization scheme for > 2.4 while keeping compatibility * Standards-Version: 3.9.4 (no changes necessary) * Lintian: override non-standard-apache2-configuration-name * Lintian: override apache2-reverse-dependency-calls-wrapper-script #717132 -- Marc Haber Thu, 05 Sep 2013 17:23:09 +0200 web2ldap (1.1.31~dfsg-1) unstable; urgency=low * Imported Upstream version 1.1.31 * add watch file from Bart Martens -- Marc Haber Thu, 24 Jan 2013 18:37:54 +0100 web2ldap (1.1.30-1) unstable; urgency=low * Imported Upstream version 1.1.30 -- Marc Haber Mon, 29 Oct 2012 10:50:57 +0000 web2ldap (1.1.25-1) unstable; urgency=low * Imported Upstream version 1.1.25 -- Marc Haber Mon, 29 Oct 2012 09:53:23 +0100 web2ldap (1.1.24-1) unstable; urgency=low * Imported Upstream version 1.1.24 * Depends: * python-ldap > 2.4 (Closes: #684887) * python-ipaddr (needed by new upstream version) * Build-Depends: dpkg-dev (>= 1.15.8) (local_options) * only conditionally chmod -x files -- Marc Haber Mon, 30 Jul 2012 23:42:32 +0200 web2ldap (1.1.23-1) unstable; urgency=low * Initial release (Closes: #679406) -- Marc Haber Mon, 25 Jun 2012 07:00:06 +0000 debian/control0000664000000000000000000000276612212121203010570 0ustar Source: web2ldap Section: python Priority: optional Maintainer: Marc Haber Build-Depends: debhelper (>= 8~), dpkg-dev (>= 1.15.8), python Standards-Version: 3.9.4 Homepage: http://web2ldap.de/ Vcs-Git: git://git.debian.org/collab-maint/web2ldap.git Vcs-Browser: http://git.debian.org/?p=collab-maint/web2ldap.git;a=summary Package: web2ldap Architecture: all Depends: ${misc:Depends}, ${python:Depends}, python-ldap (>= 2.4), python-weblib (>= 1.3.8) | python-pyweblib (>= 1.3.8), python-pyasn1, python-pyasn1-modules, python-fcgi, python-ipaddr Recommends: apache2-mpm-prefork | apache2 | httpd Suggests: libapache2-mod-fcgid, python-excelerator Description: Full-featured web-based LDAPv3 client web2ldap is a generic LDAPv3 client which does not make any assumptions about the tree structure or LDAP schema. It is therefore kind of a swiss-army knife for accessing/manipulating LDAP servers without having to configure anything. . It has been developed as a secure LDAP client with clean login behaviour and includes a schema browser which displays references/dependencies within an LDAPv3 schema. It may also be used as a customizable platform for prototyping LDAP administration use-cases. . The code in this package is primarily intended to be used as FastCGI process under apache2. Web2ldap can also be used in a stand alone mode, but you'll need to write your own init script and take care of your logs yourself (including creating /var/log/web2ldap and rotation). debian/patches/0000775000000000000000000000000012212121203010601 5ustar debian/patches/series0000664000000000000000000000014312212121203012014 0ustar access-list restricted_ldap_uri_list sample-cgi-conf pylib-dir dumpasn1cfg debian-compatible-paths debian/patches/restricted_ldap_uri_list0000664000000000000000000000106012212121203015603 0ustar Description: allow connections to arbitrary LDAP servery by default Origin: vendor --- a/etc/web2ldap/web2ldapcnf/hosts.py +++ b/etc/web2ldap/web2ldapcnf/hosts.py @@ -61,7 +61,7 @@ ldap_uri_list = [ # Set to True (or 1) if LDAP access should be restricted to the LDAP servers # defined in ldap_uri_list (default if absent is 0 - restriction disabled) -restricted_ldap_uri_list = 1 +restricted_ldap_uri_list = 0 ######################################################################## # LDAP host(s) with their defaults can be pre-defined as dictionary debian/patches/access-list0000664000000000000000000000056712212121203012746 0ustar Description: Remove example access lists Origin: vendor --- a/etc/httpd/sample-mod_fcgid.conf +++ b/etc/httpd/sample-mod_fcgid.conf @@ -42,9 +42,6 @@ IPCCommTimeout 600 Order allow,deny Allow from 127.0.0.1 Allow from ::1 - Allow from fe00::0 - Allow from 10.1.1.0/255.255.255.0 - Allow from 172.16.15.0/255.255.255.0 debian/patches/debian-compatible-paths0000664000000000000000000000165712212121203015211 0ustar Description: hard-code FHS compliant paths Origin: vendor --- a/etc/web2ldap/web2ldapcnf/__init__.py +++ b/etc/web2ldap/web2ldapcnf/__init__.py @@ -15,19 +15,18 @@ import sys,os web2ldap_dir = os.path.dirname(os.path.dirname(os.path.abspath(sys.argv[0]))) # Default directory for [web2ldap]/var -var_dir = os.path.join(web2ldap_dir,'var') -#var_dir = '/var' +var_dir = '/var' # Default directory for [web2ldap]/etc -etc_dir = os.path.join(web2ldap_dir,'etc') -#etc_dir = '/etc' +etc_dir = '/etc' # Default directory for [web2ldap]/etc/web2ldap/templates templates_dir = os.path.join(etc_dir,os.path.join('web2ldap','templates')) # Several default sub-directories in [web2ldap]/var -for var_subdir in ['run','log','state']: - vars()['var_'+var_subdir] = os.path.join(var_dir,var_subdir) +var_run = '/var/run/web2ldap' +var_log = '/var/log/web2ldap' +var_state = '/var/lib/web2ldap' import web2ldapcnf.misc,web2ldapcnf.hosts debian/patches/dumpasn1cfg0000664000000000000000000000073712212121203012743 0ustar Description: move configuration to /etc Origin: vendor --- a/etc/web2ldap/web2ldapcnf/misc.py +++ b/etc/web2ldap/web2ldapcnf/misc.py @@ -64,7 +64,7 @@ max_searchparams=20 # Path name to dumpasn1.cfg. Grab it from # http://www.cs.auckland.ac.nz/~pgut001/dumpasn1.cfg -dumpasn1cfg = os.path.join(web2ldapcnf.etc_dir,'dumpasn1.cfg') +dumpasn1cfg = '/etc/web2ldap/dumpasn1.cfg' ######################################################################## # Global HTML templates debian/patches/pylib-dir0000664000000000000000000000075512212121203012426 0ustar Description: move pylib directory to /usr/share/web2ldap Origin: vendor --- a/etc/web2ldap/web2ldapcnf/misc.py +++ b/etc/web2ldap/web2ldapcnf/misc.py @@ -8,7 +8,7 @@ web2ldapcnf/misc.py - Misc. configuratio import os,web2ldapcnf # A list with directories containing additional Python modules -pylibdirs = [os.path.join(web2ldapcnf.web2ldap_dir,'pylib')] +pylibdirs = ['/usr/share/web2ldap/pylib'] ######################################################################## # HTTP-Options debian/patches/sample-cgi-conf0000664000000000000000000000632712212121203013500 0ustar Description: move /opt/web2ldap to /usr/share/web2ldap Origin: vendor --- a/etc/httpd/sample-mod_fastcgi.conf +++ b/etc/httpd/sample-mod_fastcgi.conf @@ -12,18 +12,18 @@ #LoadModule fastcgi_module /usr/lib/apache/mod_fastcgi.so #AddModule mod_fastcgi.c -ScriptAlias /web2ldap /opt/web2ldap/fcgi/web2ldap.py -Alias /web2ldap-doc /opt/web2ldap/htdocs -Alias /css/web2ldap /opt/web2ldap/htdocs/css/web2ldap +ScriptAlias /web2ldap /usr/share/web2ldap/fcgi/web2ldap.py +Alias /web2ldap-doc /usr/share/web2ldap/htdocs +Alias /css/web2ldap /usr/share/web2ldap/htdocs/css/web2ldap # Force use of a pseudo-random salt to make hash() values in Python SetEnv PYTHONHASHSEED random # Using TCP connection -#FastCgiServer /opt/web2ldap/fcgi/web2ldap.py -port 11760 -idle-timeout 600 -appConnTimeout 0 +#FastCgiServer /usr/share/web2ldap/fcgi/web2ldap.py -port 11760 -idle-timeout 600 -appConnTimeout 0 # Using Unix domain socket -FastCgiServer /opt/web2ldap/fcgi/web2ldap.py -socket /var/lib/apache2/web2ldap-fcgi-socket -processes 1 -idle-timeout 600 -appConnTimeout 0 +FastCgiServer /usr/share/web2ldap/fcgi/web2ldap.py -socket /var/lib/apache2/web2ldap-fcgi-socket -processes 1 -idle-timeout 600 -appConnTimeout 0 # Tell mod_ssl to set the SSL standard env vars @@ -36,7 +36,7 @@ FastCgiServer /opt/web2ldap/fcgi/web2lda - + DirectoryIndex web2ldap.html Order allow,deny --- a/etc/httpd/sample-mod_fcgid.conf +++ b/etc/httpd/sample-mod_fcgid.conf @@ -8,15 +8,21 @@ # http://httpd.apache.org/mod_fcgid/ ######################################################################## +# It should look like this: +#Alias /yourapplication /usr/share/yourapplication +# +#.. +# + # Load and install module mod_fcgid #LoadModule fcgid_module /usr/lib64/apache2/mod_fcgid.so #SocketPath /var/lib/apache2/fcgid #SharememPath /var/run/fcgid_shm -ScriptAlias /web2ldap /opt/web2ldap/fcgi/web2ldap.py -Alias /web2ldap-doc /opt/web2ldap/htdocs -Alias /css/web2ldap /opt/web2ldap/htdocs/css/web2ldap +ScriptAlias /web2ldap /usr/share/web2ldap/fcgi/web2ldap.py +Alias /web2ldap-doc /usr/share/web2ldap/htdocs +Alias /css/web2ldap /usr/share/web2ldap/htdocs/css/web2ldap # Force use of a pseudo-random salt to make hash() values # in Python 2.6.8+ and Python 2.7.3+ to avoid DoS attacks @@ -39,17 +45,28 @@ IPCCommTimeout 600 SSLOptions +StdEnvVars - Order allow,deny - Allow from 127.0.0.1 - Allow from ::1 + = 2.4> + Require local + + + # This will trigger Lintian (#710656, override in place) + Order allow,deny + Allow from 127.0.0.1 + Allow from ::1 + - + DirectoryIndex web2ldap.html - Order allow,deny - Allow from All + = 2.4> + Require all granted + + + Order allow,deny + Allow from All + debian/manpages0000664000000000000000000000002212212121203010662 0ustar debian/web2ldap.1 debian/watch0000664000000000000000000000043512212121203010205 0ustar version=3 opts=dversionmangle=s/\~dfsg$// \ http://web2ldap.de/download.html .*/web2ldap-(\d.*)\.(?:tgz|tbz2|txz|tar\.(?:gz|bz2|xz)) # Bart Martens Fri, 25 Jan 2013 06:47:06 +0000 # Marc Haber Sun, 17 Feb 2013 # with help from Bart debian/compat0000664000000000000000000000000212212121203010350 0ustar 8 debian/lintian-overrides0000664000000000000000000000111412212121203012530 0ustar # our config file is called web2ldap.fcgid for a reason (there are # alternatives, this is the one we chose) web2ldap: non-standard-apache2-configuration-name # we only call that on wheezy (#717132) web2ldap: apache2-reverse-dependency-calls-wrapper-script postinst a2enmod # we use IfVersion to mask the old auth scheme (#710656) web2ldap: apache2-deprecated-auth-config Order web2ldap: apache2-deprecated-auth-config Allow web2ldap: apache2-deprecated-auth-config web2ldap: apache2-deprecated-auth-config web2ldap: apache2-deprecated-auth-config debian/README.source0000664000000000000000000000030012212121203011322 0ustar The original sources had to be repacked since they contain an ASN.1 parser module with a non-free license (pylib/pisces). Web2ldap works without this parser, so the module was simply removed. debian/install0000664000000000000000000000037112212121203010544 0ustar htdocs/* usr/share/web2ldap/htdocs/ pylib/* usr/share/web2ldap/pylib/ cgi-bin/* usr/share/doc/web2ldap/examples/ fcgi/* usr/share/web2ldap/fcgi/ etc/web2ldap/* etc/web2ldap/ etc/dumpasn1.cfg etc/web2ldap etc/httpd/* usr/share/doc/web2ldap/examples/ debian/copyright0000664000000000000000000000174112212121203011110 0ustar Format: http://dep.debian.net/deps/dep5 Upstream-Name: web2ldap Source: http://web2ldap.de/ Files: * Copyright: 1998-2012 Michael Ströder License: GPL-2.0 Files: debian/* Copyright: 2012 Marc Haber License: GPL-2.0 License: GPL-2.0 This package is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License, version 2, as published by the Free Software Foundation . This package is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. . You should have received a copy of the GNU General Public License along with this program. If not, see . On Debian systems, the complete text of the GNU General Public License version 2 can be found in "/usr/share/common-licenses/GPL-2". debian/postrm0000775000000000000000000000071012212121203010422 0ustar #!/bin/sh set -e if [ "$1" = "remove" ] || [ "$1" = "purge" ] ; then CONF="web2ldap-fcgid" if [ -e /usr/share/apache2/apache2-maintscript-helper ] ; then . /usr/share/apache2/apache2-maintscript-helper apache2_invoke disconf $CONF elif dpkg-query -f '${Version}' -W 'apache2.2-common' > /dev/null 2>&1 ; then [ -L /etc/apache2/conf.d/$CONF.conf ] && rm /etc/apache2/conf.d/$CONF.conf || true fi fi #DEBHELPER# debian/source/0000775000000000000000000000000012212121203010452 5ustar debian/source/format0000664000000000000000000000001412212121203011660 0ustar 3.0 (quilt) debian/rules0000775000000000000000000000166612212121203010243 0ustar #!/usr/bin/make -f # -*- makefile -*- # Sample debian/rules that uses debhelper. # This file was originally written by Joey Hess and Craig Small. # As a special exception, when this file is copied by dh-make into a # dh-make output file, you may use that output file without restriction. # This special exception was added by Craig Small in version 0.37 of dh-make. # Uncomment this to turn on verbose mode. #export DH_VERBOSE=1 %: dh $@ --with python2 override_dh_install: dh_install install -D etc/httpd/sample-mod_fcgid.conf debian/web2ldap/etc/apache2/conf-available/web2ldap-fcgid.conf install -D sbin/web2ldap.py debian/web2ldap/usr/sbin/web2ldap [ -x debian/web2ldap/usr/share/web2ldap/htdocs/download/.htaccess ] && chmod a-x debian/web2ldap/usr/share/web2ldap/htdocs/download/.htaccess [ -x debian/web2ldap/etc/apache2/conf-available/web2ldap-fcgid.conf ] && chmod a-x debian/web2ldap/etc/apache2/conf-available/web2ldap-fcgid.conf debian/postinst0000775000000000000000000000122612212121203010764 0ustar #!/bin/sh set -e if [ "$1" = "configure" ] ; then CONF="web2ldap-fcgid" if [ -e /usr/share/apache2/apache2-maintscript-helper ] ; then . /usr/share/apache2/apache2-maintscript-helper apache2_invoke enconf $CONF elif dpkg-query -f '${Version}' -W 'apache2.2-common' > /dev/null 2>&1 ; then # if the configuration uses uncomment the next line # a2enmod -q version # this will trigger lintian, see #717132, override in place [ -d /etc/apache2/conf.d/ ] && [ ! -L /etc/apache2/conf.d/$CONF.conf ] && ln -s ../conf-available/$CONF.conf /etc/apache2/conf.d/$CONF.conf || true fi fi #DEBHELPER#