automated saml wp
parent
e1019ad1f3
commit
b3e9798146
15
Makefile
15
Makefile
|
@ -90,6 +90,12 @@ remove: down
|
||||||
|
|
||||||
.PHONY: add-plugins
|
.PHONY: add-plugins
|
||||||
add-plugins: connect-saml
|
add-plugins: connect-saml
|
||||||
|
# Add dd admin user (NOT USED, done in isard-sso-admin)
|
||||||
|
# docker exec isard-sso-keycloak /opt/jboss/keycloak/bin/add-user-keycloak.sh -u $$DDADMIN_USER -p $$DDADMIN_PASSWORD
|
||||||
|
# docker restart isard-sso-keycloak
|
||||||
|
# sleep 10
|
||||||
|
# docker exec -u www-data isard-apps-nextcloud-app sh -c 'export OC_PASS=$$DDADMIN_PASSWORD && php occ user:add --password-from-env --display-name="DD Admin" --group="admin" $$DDADMIN_USER'
|
||||||
|
|
||||||
# Wordpress
|
# Wordpress
|
||||||
## Multisite
|
## Multisite
|
||||||
docker exec -ti isard-apps-wordpress /bin/sh -c "/multisite.sh"
|
docker exec -ti isard-apps-wordpress /bin/sh -c "/multisite.sh"
|
||||||
|
@ -124,8 +130,6 @@ add-plugins: connect-saml
|
||||||
docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:app:set onlyoffice jwt_header --value="Authorization"
|
docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:app:set onlyoffice jwt_header --value="Authorization"
|
||||||
docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:system:set allow_local_remote_servers --value=true
|
docker exec -u www-data isard-apps-nextcloud-app php occ --no-warnings config:system:set allow_local_remote_servers --value=true
|
||||||
|
|
||||||
# Add custom admin users
|
|
||||||
##docker exec -u www-data isard-apps-nextcloud-app sh -c 'export OC_PASS=$$NEXTCLOUD_DDADMIN_PASSWORD && php occ user:add --password-from-env --display-name="DD Admin" --group="admin" ddadmin'
|
|
||||||
|
|
||||||
# Allow nextcloud into other apps iframes
|
# Allow nextcloud into other apps iframes
|
||||||
# Content-Security-Policy: frame-ancestors 'self' *.$$DOMAIN;
|
# Content-Security-Policy: frame-ancestors 'self' *.$$DOMAIN;
|
||||||
|
@ -143,10 +147,15 @@ add-plugins: connect-saml
|
||||||
# Content-Security-Policy: font-src 'self' *.$$DOMAIN;
|
# Content-Security-Policy: font-src 'self' *.$$DOMAIN;
|
||||||
docker exec -ti isard-apps-nextcloud-app sed -ie "/protected \\\$$allowedFontDomains = \[/{n;s/\('\\\\\'self\\\\\'\)\('\)/\1 *.$$DOMAIN\2/}" /var/www/html/lib/public/AppFramework/Http/ContentSecurityPolicy.php
|
docker exec -ti isard-apps-nextcloud-app sed -ie "/protected \\\$$allowedFontDomains = \[/{n;s/\('\\\\\'self\\\\\'\)\('\)/\1 *.$$DOMAIN\2/}" /var/www/html/lib/public/AppFramework/Http/ContentSecurityPolicy.php
|
||||||
|
|
||||||
|
# CERTIFICATES FOR SAML
|
||||||
|
docker exec -ti isard-sso-admin /bin/sh -c "/admin/generate_certificates.sh"
|
||||||
|
|
||||||
# SAML PLUGIN NEXTCLOUD
|
# SAML PLUGIN NEXTCLOUD
|
||||||
docker exec -ti isard-sso-admin /bin/sh -c "/admin/nextcloud_gencerts.sh"
|
|
||||||
docker exec -ti isard-sso-admin python3 /admin/nextcloud_saml.py
|
docker exec -ti isard-sso-admin python3 /admin/nextcloud_saml.py
|
||||||
|
|
||||||
|
# SAML PLUGIN WORDPRESS
|
||||||
|
docker exec -ti isard-sso-admin python3 /admin/wordpress_saml.py
|
||||||
|
|
||||||
# SAML PLUGIN MOODLE
|
# SAML PLUGIN MOODLE
|
||||||
echo "To add SAML to moodle:"
|
echo "To add SAML to moodle:"
|
||||||
echo "1.-Activate SAML plugin in moodle extensions, regenerate certificate, lock certificate"
|
echo "1.-Activate SAML plugin in moodle extensions, regenerate certificate, lock certificate"
|
||||||
|
|
|
@ -19,6 +19,10 @@ SMTP_USER=your_email@mymailserver.com
|
||||||
SMTP_PASSWORD=SuperSecret
|
SMTP_PASSWORD=SuperSecret
|
||||||
SMTP_PROTOCOL=tls
|
SMTP_PROTOCOL=tls
|
||||||
|
|
||||||
|
DDADMIN_USER=ddadmin
|
||||||
|
DDADMIN_PASSWORD=Th3M@st3r
|
||||||
|
DDADMIN_EMAIL=theemail@mymailserver.com
|
||||||
|
|
||||||
### ADMINAPP (username:admin-app)
|
### ADMINAPP (username:admin-app)
|
||||||
ADMINAPP_PASSWORD=Sup3rS3cret
|
ADMINAPP_PASSWORD=Sup3rS3cret
|
||||||
#ADMINAPP_KEYCLOAK_PASSWORD=test
|
#ADMINAPP_KEYCLOAK_PASSWORD=test
|
||||||
|
|
|
@ -1 +1 @@
|
||||||
Subproject commit 7a6b416e469c3afceb45838f916389145fbb9cc0
|
Subproject commit f99da311e3da9389c7a9026bfd267d6c4b9cf78d
|
|
@ -1 +1 @@
|
||||||
Subproject commit ab559dd35af2e6177bac56e6b5c891de6df9f40e
|
Subproject commit be28c1ae30edb6097e0921c2aaebbaf92a68f566
|
Loading…
Reference in New Issue