Skip to content

fiveai/terraform-provider-freeipa

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
.github/workflows
.github/workflows
 
 
freeipa
freeipa
 
 
.gitignore
.gitignore
 
 
.travis.yml
.travis.yml
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
goreleaser.yml
goreleaser.yml
 
 
main.go
main.go
 
 

Repository files navigation

terraform-provider-freeipa

Build

Makefile has been made basically and will attempt to crosscompile for all distros. Due to kerberos and using a non-native (no golang) library this requires gcc compiler which breaks very easy across the distributions so your probably end up with failures.

TODO: separate make tasks to specify distro on build for local

make dist

Usage Example

Provider

For a test example you might not of configured your own certificates. If so please download the self-signed certs from <your-domain>/ipa/config/ca.crt and put save to /etc/ipa/ca.crt

provider "freeipa" {
  host     = var.freeipa_host
  username = var.freeipa_username
  password = var.freeipa_password
  base_dn  = var.freeipa_base_dn
}

Arguments:

  • host - host name of IPA server, example ipa.example.com (string, required)
  • username - username for authentication (string, required)
  • password - password for authentication (string, required)
  • base_dn - domain components (dc), example: dc=ipa,dc=example,dc=com (string, required)

User

resource "freeipa_user" "user" {
  uid        = var.uid
  first_name = var.first_name
  last_name  = var.last_name
  email      = var.email
  groups     = var.groups
  uid_number = var.uid_number
  gid_number = var.gid_number
}

Arguments:

  • uid - User name (string, required)
  • first_name - First name (string, required)
  • last_name - Last name (string, required)
  • email - Email address (string, optional, computed)
  • groups - Groups user will be added to (set/list, optional, computed)
  • uid_number - User ID (string, optional, computed)
  • gid_number - Group ID (string, optional, computed)

Group

resource "freeipa_user" "user" {
  gid         = var.gid
  gid_number  = var.gid_number
  description = var.description
}

Arguments:

  • gid - Group Name (string, required)
  • gid_number - Group ID (string, optional, computed)
  • description - Description for group (string, optional, default: "")

Import

# terraform import <module path> <ipauniqueid for group>

terraform import freeipa_group.group <ipauniqueid for group>
terraform import freeipa_user.user <ipauniqueid for user>

If your using FreeIPA then your likely to find that the interface does not expose the ipauniqueid. To get this you will need to log onto the IPA Server and run the following command:

ipa user-show --all <username>
ipa group-show --all <groupname>

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

6 stars

Watchers

0 watching

Forks

5 forks
Report repository

Releases 2

v0.2.0-rc1 Latest
Nov 3, 2021
+ 1 release

Packages

No packages published

Contributors 5

Languages