Skip to content

cloudfoundry-community/pwm-bosh-release

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

76 Commits

.final_builds

.final_builds

 
 

config

config

 
 

jobs

jobs

 
 

packages

packages

 
 

releases/pwm

releases/pwm

 
 

scripts

scripts

 
 

src

src

 
 

templates

templates

 
 

.gitignore

.gitignore

 
 

.gitmodules

.gitmodules

 
 

LICENSE.md

LICENSE.md

 
 

README.md

README.md

 
 

Rakefile

Rakefile

 
 

update

update

 
 

Repository files navigation

BOSH Release for PWM

PWM is an open source password self service application for LDAP directories. PWM is an ideal candidate for organizations that wish to “roll their own” password self service solution, but do not wish to start from scratch. Overview/Screenshots

Official project page is at https://github.com/pwm-project/pwm/.

The purpose of this bosh release is to provide Bosh operators an easy solution for self service onboarding. Typical use is managing identity in an OpenLDAP directory, and configure Cloudfoundry UAA to use OpenLDAP as identity backend

This release brings the following feature:

  • give pwm operators all the bosh benefits ** OS update with Bosh stemcell mechanisms ** java jdk and tomcat versionning and update with Bosh release mechanism ** multi-Iaas, multi-Os capability ** clean separation of data (Bosh persistent disk), logs and configuration ** unified operation logic for Cloudfoundry / Bosh operators ** pwm configuration for declarative bosh manifest file

for best practices configuring :

Main built-in configuration choices

  • openldap backend
  • disabled http session persistence
  • session management LOCAL
  • expects front end https offload (ie go router, with route registrar in cloudfoundry context)

see extensive pwm reference docs for evolution

For convenience and test purpose, can use a openldap docker image, inside a bosh docker release.

Usage

To use this bosh release, first upload it to your bosh:

bosh target BOSH_HOST
git clone https://github.com/cloudfoundry-community/pwm-bosh-boshrelease.git
cd pwm-bosh-boshrelease
bosh upload release releases/pwm-bosh-1.yml

For bosh-lite, you can quickly create a deployment manifest & deploy a cluster:

templates/make_manifest warden
bosh -n deploy

For AWS EC2, create a single VM:

templates/make_manifest aws-ec2
bosh -n deploy

Override security groups

For AWS & Openstack, the default deployment assumes there is a default security group. If you wish to use a different security group(s) then you can pass in additional configuration when running make_manifest above.

Create a file my-networking.yml:

---
networks:
  - name: pwm-bosh1
    type: dynamic
    cloud_properties:
      security_groups:
        - pwm-bosh

Where - pwm-bosh means you wish to use an existing security group called pwm-bosh.

You now suffix this file path to the make_manifest command:

templates/make_manifest openstack-nova my-networking.yml
bosh -n deploy

Development

As a developer of this release, create new releases and upload them:

bosh create release --force && bosh -n upload release

Final releases

To share final releases:

bosh create release --final

By default the version number will be bumped to the next major number. You can specify alternate versions:

bosh create release --final --version 2.1

After the first release you need to contact Dmitriy Kalinin to request your project is added to https://bosh.io/releases (as mentioned in README above).

About

A bosh release to package PWM

Topics

bosh-release

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

41 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • HTML 91.0%
  • Shell 6.5%
  • Batchfile 2.3%
  • Ruby 0.2%