Skynet/ldap_backend
6
0
Fork 0
Code Issues 2 Pull requests Projects Releases Packages Wiki Activity Actions
No description
127 commits 1 branch 0 tags 698 KiB
Rust 86.4%
Nix 13%
Shell 0.6%
Find a file
Brendan Golden b570ed9073 Merge branch 'main' into #4-password-reset 
# Conflicts:
#	src/lib.rs
#	src/methods/account_new.rs
2023-08-06 17:57:02 +01:00
src Merge branch 'main' into #4-password-reset 2023-08-06 17:57:02 +01:00
.gitignore feat: add proper env vars for home and the csv 2023-07-17 01:24:52 +01:00
.gitlab-ci.yml fix: renamed to make room for teh compsoc repo 2023-07-30 14:08:54 +00:00
.rustfmt.toml fmt: updated rust format 2023-07-29 17:23:05 +01:00
Cargo.lock pkg: newer dotenv 2023-07-29 22:23:20 +01:00
Cargo.toml test: bump for pipeline 2023-08-06 14:32:53 +01:00
flake.lock feat: packed up server as a flake 2023-06-18 20:46:02 +01:00
flake.nix fix: groups are now updated every 8 hours 2023-08-06 14:27:24 +01:00
README.md doc: update documentation and comments 2023-08-06 14:43:49 +01:00

README.md

Skynet LDAP backend

Basic information on the Skynet ldap backend for use on https://sso.skynet.ie

Error: HTTP 500

No indication of the issue is returned to teh frontend.

Routes

Base URL: https://api.sso.skynet.ie

POST /ldap/update

Fields:

  • userPassword
  • mail
  • sshPublicKey
  • cn
  • sn
  • skDiscord
{ 
  "user" : "username", 
  "pass" : "password",
  "field": "field to change",
  "value": "new value of field"
}

Success:
Each value is either a string or null.

{
  "result": "success",
  "success": {
    "cn": "Firstname Surname",
    "mail": "Email address",
    "skDiscord": null, 
    "sshPublicKey": "ssh key"
  }
}

Changing userPassword requires the existing password in teh apssword field and the new one in teh value field.

POST /ldap/new/email

Kickstarts teh process of signing up to Skynet

{ 
  "email" : "User's wolves email"
}

POST /ldap/new/account

Verifies teh user has access to this email

{ 
  "auth" : "Authcode from the email",
  "user" : "username the user wants", 
  "pass" : "password teh user wants"
}

Username taken:

{"result": "error", "error": "username not available"}

Invalid Auth:

{"result": "error", "error": "Invalid auth"}

Responses

Generic responses which is used unless otherwise specified above.

POST /ldap/recover/password

{
  "user" : "[OPTIONAL] username looking for reset",
  "email" : "[OPTIONAL] email looking for reset"
}

All responses:

{"result": "success"}

POST /ldap/recover/password/auth

{ 
  "auth" : "Auth key from teh email",
  "pass" : "Password the user chooses"
}

Early Errors:

{"result": "error"}

LDAP error:

{"result": "error", "error": "ldap error"}

Success:

{"result": "success", "success": "Password set"}

Responses

Generic responses which is used unless otherwise specified above.

Success: HTTP 200

{
    "result": "success"
}