ldap0r/README.org

* ldap0r
  So far =ldap0r= is simply a very small web application just to reset
  LDAP passwords. All it is capable of is to let an user enter its
  email address and send an email containing a generated link to reset
  the LDAP password, that's it so far. My motivation was to have
  something "suckless" which does not depend on PHP or similar insane.

** Installation
   A rust nightly toolchain which can be acquired via https://rustup.rs
   is needed in order to successfully build =ldap0r=. Install =rustup=,
   download rust nightly, then clone this repository, set the
   toolchain inside the source directory to nightly, build and run it.

   #+BEGIN_SRC sh
   rustup toolchain install nightly
   git clone https://git.onders.org/finga/ldap0r.git
   cd ldap0r
   rustup override set nightly
   cargo run
   #+END_SRC

   The application can be configured with the =Rocket.toml=
   configuration file.

** Contribution
   I am open for suggestions and appreciate any feedback.

** Todo List
*** Password reset [5/11]
**** DONE Form to send reset link
**** DONE Parse URL with reset key
**** DONE Cleanup all unwraps
**** DONE Proper error handling
**** DONE Implement proper logging
**** TODO Make `keys.lock()` properly thread safe
**** TODO Check for existing keys
**** TODO Implement key validity timeout
**** TODO Implement proper tests
**** TODO Optionally store key persistently between restarts
**** TODO Should =tera= templates instead of =handlebar= templates be used?

*** Configuration [0/5]
**** TODO Fix domain config
**** TODO Make size of key configurable
**** TODO Make key validity timeout
**** TODO Make it possible to send emails over encrypted connections
**** TODO Make html/text emails configurable

*** Login Section (not sure if going to happen)
Password reset functionality On the `reset` page an email address can be submitted. If an account associated with the submitted email address an email is sent containing an URL. This URL can be used to set a new password. - Add GPLv3 for licensing - Add dependencies - `rocket_contrib` to be able to use handlebar templates - `anyhow` to handle errors - `log` for logging - `ldap3` to communicate with a LDAP server - `lettre` and `lettre_email` to handle the generation of emails and to send them - `rand` to generate random keys - Add `README.org` which is also used to generate `README.md` - Add configuration parameters - domain - LDAP - server - base - filter - bind - password - Change default development address to 0.0.0.0 - Add structs to handle data - Add functions to handle password reset actions - `reset_prepare()` to generate a new key, send it to the requestor and keep it in the memory - `set_password()` to check for the key and set the password - Add routes - Add tests - Add templates - `reset.html.hbs` to submit an email address - `reset_key.html.hbs` to set the new password 2020-07-05 21:12:43 +02:00			`* ldap0r`
			`So far =ldap0r= is simply a very small web application just to reset`
Improve readme and fix typos 2020-07-08 21:22:20 +02:00			`LDAP passwords. All it is capable of is to let an user enter its`
			`email address and send an email containing a generated link to reset`
			`the LDAP password, that's it so far. My motivation was to have`
			`something "suckless" which does not depend on PHP or similar insane.`
Password reset functionality On the `reset` page an email address can be submitted. If an account associated with the submitted email address an email is sent containing an URL. This URL can be used to set a new password. - Add GPLv3 for licensing - Add dependencies - `rocket_contrib` to be able to use handlebar templates - `anyhow` to handle errors - `log` for logging - `ldap3` to communicate with a LDAP server - `lettre` and `lettre_email` to handle the generation of emails and to send them - `rand` to generate random keys - Add `README.org` which is also used to generate `README.md` - Add configuration parameters - domain - LDAP - server - base - filter - bind - password - Change default development address to 0.0.0.0 - Add structs to handle data - Add functions to handle password reset actions - `reset_prepare()` to generate a new key, send it to the requestor and keep it in the memory - `set_password()` to check for the key and set the password - Add routes - Add tests - Add templates - `reset.html.hbs` to submit an email address - `reset_key.html.hbs` to set the new password 2020-07-05 21:12:43 +02:00
			`** Installation`
Improve readme and fix typos 2020-07-08 21:22:20 +02:00			`A rust nightly toolchain which can be acquired via https://rustup.rs`
Password reset functionality On the `reset` page an email address can be submitted. If an account associated with the submitted email address an email is sent containing an URL. This URL can be used to set a new password. - Add GPLv3 for licensing - Add dependencies - `rocket_contrib` to be able to use handlebar templates - `anyhow` to handle errors - `log` for logging - `ldap3` to communicate with a LDAP server - `lettre` and `lettre_email` to handle the generation of emails and to send them - `rand` to generate random keys - Add `README.org` which is also used to generate `README.md` - Add configuration parameters - domain - LDAP - server - base - filter - bind - password - Change default development address to 0.0.0.0 - Add structs to handle data - Add functions to handle password reset actions - `reset_prepare()` to generate a new key, send it to the requestor and keep it in the memory - `set_password()` to check for the key and set the password - Add routes - Add tests - Add templates - `reset.html.hbs` to submit an email address - `reset_key.html.hbs` to set the new password 2020-07-05 21:12:43 +02:00			`is needed in order to successfully build =ldap0r=. Install =rustup=,`
			`download rust nightly, then clone this repository, set the`
			`toolchain inside the source directory to nightly, build and run it.`

			`#+BEGIN_SRC sh`
			`rustup toolchain install nightly`
			`git clone https://git.onders.org/finga/ldap0r.git`
			`cd ldap0r`
			`rustup override set nightly`
			`cargo run`
			`#+END_SRC`

			`The application can be configured with the =Rocket.toml=`
			`configuration file.`

Improve readme and fix typos 2020-07-08 21:22:20 +02:00			`** Contribution`
			`I am open for suggestions and appreciate any feedback.`

Password reset functionality On the `reset` page an email address can be submitted. If an account associated with the submitted email address an email is sent containing an URL. This URL can be used to set a new password. - Add GPLv3 for licensing - Add dependencies - `rocket_contrib` to be able to use handlebar templates - `anyhow` to handle errors - `log` for logging - `ldap3` to communicate with a LDAP server - `lettre` and `lettre_email` to handle the generation of emails and to send them - `rand` to generate random keys - Add `README.org` which is also used to generate `README.md` - Add configuration parameters - domain - LDAP - server - base - filter - bind - password - Change default development address to 0.0.0.0 - Add structs to handle data - Add functions to handle password reset actions - `reset_prepare()` to generate a new key, send it to the requestor and keep it in the memory - `set_password()` to check for the key and set the password - Add routes - Add tests - Add templates - `reset.html.hbs` to submit an email address - `reset_key.html.hbs` to set the new password 2020-07-05 21:12:43 +02:00			`** Todo List`
Improve readme and fix typos 2020-07-08 21:22:20 +02:00			`*** Password reset [5/11]`
			`**** DONE Form to send reset link`
			`**** DONE Parse URL with reset key`
Password reset functionality On the `reset` page an email address can be submitted. If an account associated with the submitted email address an email is sent containing an URL. This URL can be used to set a new password. - Add GPLv3 for licensing - Add dependencies - `rocket_contrib` to be able to use handlebar templates - `anyhow` to handle errors - `log` for logging - `ldap3` to communicate with a LDAP server - `lettre` and `lettre_email` to handle the generation of emails and to send them - `rand` to generate random keys - Add `README.org` which is also used to generate `README.md` - Add configuration parameters - domain - LDAP - server - base - filter - bind - password - Change default development address to 0.0.0.0 - Add structs to handle data - Add functions to handle password reset actions - `reset_prepare()` to generate a new key, send it to the requestor and keep it in the memory - `set_password()` to check for the key and set the password - Add routes - Add tests - Add templates - `reset.html.hbs` to submit an email address - `reset_key.html.hbs` to set the new password 2020-07-05 21:12:43 +02:00			`**** DONE Cleanup all unwraps`
			`**** DONE Proper error handling`
			`**** DONE Implement proper logging`
			**** TODO Make `keys.lock()` properly thread safe
			`**** TODO Check for existing keys`
			`**** TODO Implement key validity timeout`
			`**** TODO Implement proper tests`
Improve readme and fix typos 2020-07-08 21:22:20 +02:00			`**** TODO Optionally store key persistently between restarts`
			`**** TODO Should =tera= templates instead of =handlebar= templates be used?`
Password reset functionality On the `reset` page an email address can be submitted. If an account associated with the submitted email address an email is sent containing an URL. This URL can be used to set a new password. - Add GPLv3 for licensing - Add dependencies - `rocket_contrib` to be able to use handlebar templates - `anyhow` to handle errors - `log` for logging - `ldap3` to communicate with a LDAP server - `lettre` and `lettre_email` to handle the generation of emails and to send them - `rand` to generate random keys - Add `README.org` which is also used to generate `README.md` - Add configuration parameters - domain - LDAP - server - base - filter - bind - password - Change default development address to 0.0.0.0 - Add structs to handle data - Add functions to handle password reset actions - `reset_prepare()` to generate a new key, send it to the requestor and keep it in the memory - `set_password()` to check for the key and set the password - Add routes - Add tests - Add templates - `reset.html.hbs` to submit an email address - `reset_key.html.hbs` to set the new password 2020-07-05 21:12:43 +02:00
			`*** Configuration [0/5]`
			`**** TODO Fix domain config`
			`**** TODO Make size of key configurable`
			`**** TODO Make key validity timeout`
			`**** TODO Make it possible to send emails over encrypted connections`
			`**** TODO Make html/text emails configurable`

			`*** Login Section (not sure if going to happen)`