Proposal: Switch to GLAuth #157
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
GLAuth is a lightweight and easy to use alternative to OpenLDAP. Maybe switch to GLAuth when we convert the server to NixOS? That would require us to package GLAuth but that shouldn't be too hard.
Related: #57 (although 389 is an absolutely scary piece of software, good thing we didn't switch to it)
Now if GLAuth had features like a web UI for managing users and email password resets, I think we should definitely switch to it now, but our OpenLDAP server isn't broken and switching to GLAuth would give end-users the exact same experience, so it's instead something we could do in the future with the NixOS switch. @codedotjs any thoughts?
GLAuth looks kind of interesting. The website promises
If we can package it for Nix we can try using it.
I added an issue at the packages repo.
Proposol: Switch to GLAuthto Proposal: Switch to GLAuthYeah, it sounds like a huge improvement over OpenLDAP which takes days to set up. Packaging GLAuth should be easy, since it's just a Go binary and a systemd service.
We might just reuse OpenLDAP since we already have perfectly working configs (https://git.exozy.me/exozyme/LDAP). I'm closing this issue for now since we won't be switching to GLAuth anytime soon, but we can revisit this in the future.