Commit Graph

12 Commits

Author SHA1 Message Date
Adam Stephens
b93f6e4acd
nixos/tests/kanidm: bind certs path to fix ofborg tests
provision # [    8.223448] (kanidmd)[819]: kanidm.service: Failed to set up mount namespacing: /ofborg/checkout/repo/38dca4e3aa6bca43ea96d2fcc04e8229/builder/ofborg-evaluator-1/nixos/tests/common/acme/server:
No such file or directory
2024-08-22 10:59:48 -04:00
oddlama
558fa6abc6
nixos/kanidm: add provisioning of groups, persons and oauth2 systems 2024-08-16 14:12:35 +02:00
Adam Stephens
87ce2c95ae
kanidm: 1.1.0-rc.16 -> 1.2.0
https://github.com/kanidm/kanidm/releases/tag/v1.2.0

Added updatescript, and removed Cargo.lock as no more git deps.

New release process documented here:

a67d1f5160/book/src/support.md

Re-ordered test and removed anonymous login as logout no longer works:
[info]: Ignoring request to logout session - these sessions are not recorded
2024-05-01 09:47:06 -04:00
Jade Lovelace
9ce6ff06c7 nixos/tests: fix kanidm under network-online dep fix 2024-01-18 16:28:41 -08:00
Martin Weinelt
184d15cc06
kanidm: 1.1.0-alpha.12 -> 1.1.0-beta.13
https://github.com/kanidm/kanidm/releases/tag/v1.1.0-beta.13

The kanidmd process now creates a unix socket, over which admin tasks
can be done, without having to shut kanidm down first.

The kanidm_unixd process now wants access to /etc/shadow and /etc/group,
so it can rule out collisions with the host system.
2023-08-01 17:13:58 +02:00
Max
7575e488de nixos/tests/kanidm: test posix user creation and login 2023-06-11 17:17:43 +02:00
Bjørn Forsman
ed99bd0fb9
kanidm: 1.1.0-alpha.11 -> 1.1.0-alpha.12
* Update Cargo.lock from upstream.
* Adapt expression to upstream source tree layout changes.
* Apply patch to restore x86_64 v1 support

Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>

Also updates the NixOS test:

* Stop kanidm to recover the idm_admin account
* Group all tests into subtest blocks
* Add TODO to wait for unix socket on unixd for the next release

Co-Authored-By: Raito Bezarius <masterancpp@gmail.com>
Co-Authored-By: Martin Weinelt <hexa@darmstadt.ccc.de>
2023-06-01 15:28:11 +02:00
Flakebi
603e89eef9 kanidm: BindMount certificate paths
Bind mount the base dirs of the tls key and chain into the service.

Make sure to bind every directory just once. The test failed on ofborg
when /nix/store and the certificate path in /nix/store/<some path> were
bound.
2023-04-20 02:32:37 +02:00
Flakebi
887020f39c nixos/kanidm: Add tls options
Since 1.1.0-alpha.10 kanidm requires TLS to be set up or it won't start.
2022-11-26 21:42:35 +01:00
Tako Marks
fb3f7d70b4 nixos/kanidm: Add unixd test
Test makes sure unixd is able to run and is able to query the server.
2022-09-12 20:25:04 +02:00
Martin Weinelt
9ac9449a0a nixos/tests/kanidm: Update recover_account commandline
The username is now passed directly as an argument.
2022-09-05 17:13:10 +02:00
Kerstin Humm
c126babb28 nixos/kanidm: init
Co-Authored-By:  Martin Weinelt <mweinelt@users.noreply.github.com>
Co-Authored-By:  Flakebi <flakebi@t-online.de>
2022-05-05 19:06:13 +02:00