nixos/tests/openldap.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35

import ./make-test.nix {
  name = "openldap";

  machine = { pkgs, ... }: {
    services.openldap = {
      enable = true;
      extraConfig = ''
        include ${pkgs.openldap}/etc/schema/core.schema
        include ${pkgs.openldap}/etc/schema/cosine.schema
        include ${pkgs.openldap}/etc/schema/inetorgperson.schema
        include ${pkgs.openldap}/etc/schema/nis.schema
        database bdb
        suffix dc=example
        directory /var/db/openldap
        rootdn cn=root,dc=example
        rootpw notapassword
      '';
      declarativeContents = ''
        dn: dc=example
        objectClass: domain
        dc: example

        dn: ou=users,dc=example
        objectClass: organizationalUnit
        ou: users
      '';
    };
  };

  testScript = ''
    $machine->waitForUnit('openldap.service');
    $machine->succeed('systemctl status openldap.service');
    $machine->succeed('ldapsearch -LLL -D "cn=root,dc=example" -w notapassword -b "dc=example"');
  '';
}