Merge pull request 'epas: fix the authenticated bind behaviour' (#11) from adellam/ansible-role-epas:master into master

defaults/main.yml

@@ -49,7 +49,8 @@ epas_ldap_login_return_uri: '/.'
 epas_ldap_eppn_attribute_name: 'eduPersonPrincipalName'
 epas_ldap_starttls_enabled: 'false'
 epas_ldap_authenticated_bind: False
-epas_ldap_bind_principal: 'cn=readuser,ou=People,o=example,c=org'
+epas_ldap_bind_dn: 'cn=readuser,ou=People,o=example,c=org'
 #epas_ldap_bind_credentials: 'use a vault file'
+epas_ldap_authenticate_user_search_dn: 'o=example,c=org'
 epas_log_level: 'INFO'
 epas_log_appenders: 'stderr'

templates/epas-docker-compose.yml.j2

@@ -67,8 +67,9 @@ services:
       - LDAP_LOGIN_RETURN={{ epas_ldap_login_return_uri }} # default: /. Indirizzo relativo di reindirizzamento dopo il login LDAP.
       - LDAP_EPPN_ATTRIBUTE_NAME={{ epas_ldap_eppn_attribute_name }}  # default: eduPersonPrincipalName. Campo LDAP utilizzato per il mapping con il campo eppn presente in ePAS.
 {% if epas_ldap_authenticated_bind %}
-      - LDAP_ADMIN_PRINCIPAL={{ epas_ldap_bind_principal }}
+      - LDAP_BIND_DN={{ epas_ldap_bind_dn }}
-      - LDAP_ADMIN_CREDENTIALS={{ epas_ldap_bind_credentials }}
+      - LDAP_BIND_CREDENTIALS={{ epas_ldap_bind_credentials }}
+      - LDAP_AUTHENTICATE_USER_SEARCH_DN={{ epas_ldap_authenticate_user_search_dn }}
 {% endif %}
       #### Invio Segnalazioni via email
       #- REPORT_TO=${REPORT_TO}                 # default: epas@iit.cnr.it