... | ... | @@ -172,6 +172,44 @@ The fields in the output are in the format of the [group(5)](https://manpages.de |
|
|
Note that the group membership will vary according to the machine on
|
|
|
which the command is run, as not all users are present everywhere.
|
|
|
|
|
|
## Adding/removing users in a group
|
|
|
|
|
|
Using this magical `ldapvi` command on the LDAP server
|
|
|
(`db.torproject.org`):
|
|
|
|
|
|
ldapvi -ZZ --encoding=ASCII --ldap-conf -h db.torproject.org -D "uid=$USER,ou=users,dc=torproject,dc=org"
|
|
|
|
|
|
... you get thrown in a text editor showing you the entire dump of the
|
|
|
LDAP database. Be careful.
|
|
|
|
|
|
To add or remove a user to/from a group, first locate that user with
|
|
|
your editor search function (e.g. in `vi`, you'd type
|
|
|
<kbd>/uid=ahf</kbd> to look for the `ahf` user). You should see a
|
|
|
block that looks like this:
|
|
|
|
|
|
351 uid=ahf,ou=users,dc=torproject,dc=org
|
|
|
uid: ahf
|
|
|
objectClass: top
|
|
|
objectClass: inetOrgPerson
|
|
|
objectClass: debianAccount
|
|
|
objectClass: shadowAccount
|
|
|
objectClass: debianDeveloper
|
|
|
uidNumber: 2103
|
|
|
gidNumber: 2103
|
|
|
[...]
|
|
|
supplementaryGid: torproject
|
|
|
|
|
|
To add or remove a group, simply add or remove a `supplementaryGid`
|
|
|
line. For example, in the above, we just added this line:
|
|
|
|
|
|
supplementaryGid: tordnsel
|
|
|
|
|
|
to add `ahf` to the `tordnsel` group.
|
|
|
|
|
|
Save the file and exit the editor. `ldapvi` will prompt you to confirm
|
|
|
the changes, you can review with the <kbd>v</kbd> key or save with
|
|
|
<kbd>y</kbd>.
|
|
|
|
|
|
## Searching LDAP
|
|
|
|
|
|
This will load a text editor with a dump of all the users (useful to
|
... | ... | |