automated saml wp

root 2021-05-29 10:11:25 +02:00
parent e1019ad1f3
commit b3e9798146
4 changed files with 18 additions and 5 deletions

View File

@ -90,6 +90,12 @@ remove: down
.PHONY: add-plugins .PHONY: add-plugins
add-plugins: connect-saml add-plugins: connect-saml
# Add dd admin user (NOT USED, done in isard-sso-admin)
# docker exec isard-sso-keycloak /opt/jboss/keycloak/bin/add-user-keycloak.sh -u $$DDADMIN_USER -p $$DDADMIN_PASSWORD
# docker restart isard-sso-keycloak
# sleep 10
# docker exec -u www-data isard-apps-nextcloud-app sh -c 'export OC_PASS=$$DDADMIN_PASSWORD && php occ user:add --password-from-env --display-name="DD Admin" --group="admin" $$DDADMIN_USER'
# Wordpress # Wordpress
## Multisite ## Multisite
docker exec -ti isard-apps-wordpress /bin/sh -c "/multisite.sh" docker exec -ti isard-apps-wordpress /bin/sh -c "/multisite.sh"
@ -124,8 +130,6 @@ add-plugins: connect-saml
docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:app:set onlyoffice jwt_header --value="Authorization" docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:app:set onlyoffice jwt_header --value="Authorization"
docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:system:set allow_local_remote_servers --value=true docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:system:set allow_local_remote_servers --value=true
# Add custom admin users
##docker exec -u www-data isard-apps-nextcloud-app sh -c 'export OC_PASS=$$NEXTCLOUD_DDADMIN_PASSWORD && php occ user:add --password-from-env --display-name="DD Admin" --group="admin" ddadmin'
# Allow nextcloud into other apps iframes # Allow nextcloud into other apps iframes
# Content-Security-Policy: frame-ancestors 'self' *.$$DOMAIN; # Content-Security-Policy: frame-ancestors 'self' *.$$DOMAIN;
@ -143,10 +147,15 @@ add-plugins: connect-saml
# Content-Security-Policy: font-src 'self' *.$$DOMAIN; # Content-Security-Policy: font-src 'self' *.$$DOMAIN;
docker exec -ti isard-apps-nextcloud-app sed -ie "/protected \\\$$allowedFontDomains = \[/{n;s/\('\\\\\'self\\\\\'\)\('\)/\1 *.$$DOMAIN\2/}" /var/www/html/lib/public/AppFramework/Http/ContentSecurityPolicy.php docker exec -ti isard-apps-nextcloud-app sed -ie "/protected \\\$$allowedFontDomains = \[/{n;s/\('\\\\\'self\\\\\'\)\('\)/\1 *.$$DOMAIN\2/}" /var/www/html/lib/public/AppFramework/Http/ContentSecurityPolicy.php
# CERTIFICATES FOR SAML
docker exec -ti isard-sso-admin /bin/sh -c "/admin/generate_certificates.sh"
# SAML PLUGIN NEXTCLOUD # SAML PLUGIN NEXTCLOUD
docker exec -ti isard-sso-admin /bin/sh -c "/admin/nextcloud_gencerts.sh"
docker exec -ti isard-sso-admin python3 /admin/nextcloud_saml.py docker exec -ti isard-sso-admin python3 /admin/nextcloud_saml.py
# SAML PLUGIN WORDPRESS
docker exec -ti isard-sso-admin python3 /admin/wordpress_saml.py
# SAML PLUGIN MOODLE # SAML PLUGIN MOODLE
echo "To add SAML to moodle:" echo "To add SAML to moodle:"
echo "1.-Activate SAML plugin in moodle extensions, regenerate certificate, lock certificate" echo "1.-Activate SAML plugin in moodle extensions, regenerate certificate, lock certificate"

View File

@ -19,6 +19,10 @@ SMTP_USER=your_email@mymailserver.com
SMTP_PASSWORD=SuperSecret SMTP_PASSWORD=SuperSecret
SMTP_PROTOCOL=tls SMTP_PROTOCOL=tls
DDADMIN_USER=ddadmin
DDADMIN_PASSWORD=Th3M@st3r
DDADMIN_EMAIL=theemail@mymailserver.com
### ADMINAPP (username:admin-app) ### ADMINAPP (username:admin-app)
ADMINAPP_PASSWORD=Sup3rS3cret ADMINAPP_PASSWORD=Sup3rS3cret
#ADMINAPP_KEYCLOAK_PASSWORD=test #ADMINAPP_KEYCLOAK_PASSWORD=test

@ -1 +1 @@
Subproject commit 7a6b416e469c3afceb45838f916389145fbb9cc0 Subproject commit f99da311e3da9389c7a9026bfd267d6c4b9cf78d

@ -1 +1 @@
Subproject commit ab559dd35af2e6177bac56e6b5c891de6df9f40e Subproject commit be28c1ae30edb6097e0921c2aaebbaf92a68f566