diff options
| author | Lukas Oertel | 2023-01-22 18:12:17 +0100 |
|---|---|---|
| committer | Lukas Oertel | 2023-01-22 18:12:17 +0100 |
| commit | e23a1db405b5181f66d2fad6636f89ec2c30948f (patch) | |
| tree | 7953f44f081dbb133e01163f0c7a2278bdbb2df7 | |
| parent | edf1ec190d2125ac5dbdd38635bc0b09f6c71033 (diff) | |
scripts/hedgedoc-ldap_to_oauth2: Init
| -rw-r--r-- | scripts/hedgedoc-ldap_to_oauth2/README.md | 8 | ||||
| -rw-r--r-- | scripts/hedgedoc-ldap_to_oauth2/ldap_users.sh | 8 | ||||
| -rw-r--r-- | scripts/hedgedoc-ldap_to_oauth2/replacements.txt | 4 |
3 files changed, 20 insertions, 0 deletions
diff --git a/scripts/hedgedoc-ldap_to_oauth2/README.md b/scripts/hedgedoc-ldap_to_oauth2/README.md new file mode 100644 index 0000000..d6c0d8b --- /dev/null +++ b/scripts/hedgedoc-ldap_to_oauth2/README.md @@ -0,0 +1,8 @@ +Script to convert CodiMD, HackMD or Hedgedoc Postgres database users from LDAP authentication to OAuth2 (i.e. Keycloak in our case). + + +`ldap_users.txt` should look like: +``` +scott LDAP-1000 +peter LDAP-1001 +``` diff --git a/scripts/hedgedoc-ldap_to_oauth2/ldap_users.sh b/scripts/hedgedoc-ldap_to_oauth2/ldap_users.sh new file mode 100644 index 0000000..8d05fa5 --- /dev/null +++ b/scripts/hedgedoc-ldap_to_oauth2/ldap_users.sh @@ -0,0 +1,8 @@ +#!/bin/bash + +while read p; do + USER=`echo $p | sed 's/\s.*$//'` + ID=`echo $p | sed 's/.* //'` + echo $USER $ID + sed 's/$UID/'$USER'/g' replacements.txt | sed 's/$LDAPID/'$ID'/g' - >> replacements.sql +done <ldap_users.txt diff --git a/scripts/hedgedoc-ldap_to_oauth2/replacements.txt b/scripts/hedgedoc-ldap_to_oauth2/replacements.txt new file mode 100644 index 0000000..b093101 --- /dev/null +++ b/scripts/hedgedoc-ldap_to_oauth2/replacements.txt @@ -0,0 +1,4 @@ +UPDATE "Users" SET profileid = '$UID', profile = jsonb_set(profile::jsonb, '{id}', '"$UID"') where profileid = '$LDAPID'; +UPDATE "Users" SET profile = profile::jsonb || jsonb_build_object('displayName', profile::json->'username') where profileid = '$UID'; +UPDATE "Users" SET profile = jsonb_set(profile::jsonb, '{username}', '"$UID"') where profileid = '$UID'; +UPDATE "Users" SET profile = jsonb_set(profile::jsonb, '{provider}', '"oauth2"') where profileid = '$UID'; |