From dac58ee69321298925a1f8c403b0a443dd596a82 Mon Sep 17 00:00:00 2001
From: Rob Crittenden <rcritten@redhat.com>
Date: Tue, 16 Oct 2007 10:17:39 -0400
Subject: Enabled memberof plugin

---
 .../ipa-slapi-plugins/ipa-memberof/memberof-conf.ldif       |  1 +
 ipa-server/ipaserver/dsinstance.py                          | 13 +++++++++++++
 2 files changed, 14 insertions(+)

diff --git a/ipa-server/ipa-slapi-plugins/ipa-memberof/memberof-conf.ldif b/ipa-server/ipa-slapi-plugins/ipa-memberof/memberof-conf.ldif
index a1f03140..1441afea 100644
--- a/ipa-server/ipa-slapi-plugins/ipa-memberof/memberof-conf.ldif
+++ b/ipa-server/ipa-slapi-plugins/ipa-memberof/memberof-conf.ldif
@@ -1,4 +1,5 @@
 dn: cn=ipa-memberof,cn=plugins,cn=config
+changetype: add
 objectclass: top
 objectclass: nsSlapdPlugin
 objectclass: extensibleObject
diff --git a/ipa-server/ipaserver/dsinstance.py b/ipa-server/ipaserver/dsinstance.py
index 16552393..0a6bdfc9 100644
--- a/ipa-server/ipaserver/dsinstance.py
+++ b/ipa-server/ipaserver/dsinstance.py
@@ -31,6 +31,9 @@ SHARE_DIR = "/usr/share/ipa/"
 SERVER_ROOT_64 = "/usr/lib64/dirsrv"
 SERVER_ROOT_32 = "/usr/lib/dirsrv"
 
+def ldap_mod(fd, dn, pwd):
+    args = ["/usr/bin/ldapmodify", "-h", "127.0.0.1", "-xv", "-D", dn, "-w", pwd, "-f", fd.name]
+    run(args)
 
 def generate_serverid():
     """Generate a UUID (universally unique identifier) suitable
@@ -89,6 +92,7 @@ class DsInstance:
         self.__create_ds_user()
         self.__create_instance()
         self.__add_default_schemas()
+        self.__add_memberof_module()
         self.__enable_ssl()
         self.__certmap_conf()
         try:
@@ -168,6 +172,15 @@ class DsInstance:
         shutil.copyfile(SHARE_DIR + "60samba.ldif",
                         self.schema_dirname() + "60samba.ldif")
 
+    def __add_memberof_module(self):
+        memberof_txt = template_file(SHARE_DIR + "memberof-conf.ldif", self.sub_dict)
+        memberof_fd = write_tmp_file(memberof_txt)
+        try:
+            ldap_mod(memberof_fd, "cn=Directory Manager", self.dm_password)
+        except subprocess.CalledProcessError, e:
+            print "Failed to load memberof-conf.ldif", e
+        memberof_fd.close()
+
     def __enable_ssl(self):
         logging.debug("configuring ssl for ds instance")
         dirname = self.config_dirname()
-- 
cgit