From 4623908c8c0e82d5831fca562c6f5a8430d494c8 Mon Sep 17 00:00:00 2001
From: Ratan Gupta <ratagupt@linux.vnet.ibm.com>
Date: Wed, 20 Mar 2019 07:11:40 +0530
Subject: Ldap: Add the BindDn password in the config interface

Specifies the credentials with which to bind,Implementation should
consider changing the permissions of the underlying file to
only grant access to the root user.
This property value should not be reflected on the D-bus object itself.
Implementation can use the given value and update the service
implementing the LDAP client.This is just to facilitate the support
for changing the bin dn password if needed.

Currently this property is over D-bus, There are security concerns
for the same, but once we find better way to update the ldap password
we would fix it.

Change-Id: I69a4334134c0567d67be4b0071a80b7c9977316e
Signed-off-by: Ratan Gupta <ratagupt@linux.vnet.ibm.com>
---
 xyz/openbmc_project/User/Ldap/Config.interface.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

(limited to 'xyz/openbmc_project')

diff --git a/xyz/openbmc_project/User/Ldap/Config.interface.yaml b/xyz/openbmc_project/User/Ldap/Config.interface.yaml
index a0c72e0..42c7126 100644
--- a/xyz/openbmc_project/User/Ldap/Config.interface.yaml
+++ b/xyz/openbmc_project/User/Ldap/Config.interface.yaml
@@ -18,6 +18,19 @@ properties:
       errors:
         - xyz.openbmc_project.Common.Error.InternalFailure
         - xyz.openbmc_project.Common.Error.InvalidArgument
+    - name: LDAPBindDNPassword
+      type: string
+      description: >
+          Specifies the credentials with which to bind,Implementation should
+          consider changing the permissions of the underlying file to
+          only grant access to the root user.
+          This property value should not be reflected on the D-bus object itself.
+          Implementation can use the given value and update the service
+          implementing the LDAP client.This is just to facilitate the support
+          for changing the bin dn password if needed.
+          Currently this property is over D-bus, There are security concerns
+          for the same, but once we find better way to update the ldap password
+          we would fix it.
     - name: LDAPBaseDN
       type: string
       description: >
-- 
cgit v1.2.1