Merge branch 'automated-tasks' into 'development'

chore(gitlab-ci): Automated update of git sub-module

See merge request nofusscomputing/projects/nodered_ldap_self_service!15

.cz.yaml

@@ -0,0 +1,7 @@
+commitizen:
+  bump_message: "build(version): bump version $current_version \u2192 $new_version"
+  changelog_incremental: false
+  name: cz_conventional_commits
+  tag_format: $major.$minor.$patch$prerelease
+  update_changelog_on_bump: true
+  version: 1.0.0rc4

.gitignore

@@ -0,0 +1,6 @@
+# Ignore Node-RED backups
+*.backup
+
+# Ignore tmp files
+*.tmp
+tmp.*

.gitlab-ci.yml

@@ -0,0 +1,28 @@
+variables:
+  MY_PROJECT_ID: "48321671"
+  GIT_SYNC_URL: "https://$GITHUB_USERNAME_ROBOT:$GITHUB_TOKEN_ROBOT@github.com/NoFussComputing/nodered_ldap_self_service.git"
+  
+  DOCKER_IMAGE_BUILD_TARGET_PLATFORMS: "linux/amd64,linux/arm64,linux/arm/v7"
+  DOCKER_IMAGE_PUBLISH_NAME: 'ldap-selfservice'
+  DOCKER_IMAGE_PUBLISH_REGISTRY: docker.io/nofusscomputing
+  DOCKER_IMAGE_PUBLISH_URL: https://hub.docker.com/r/nofusscomputing/$DOCKER_IMAGE_PUBLISH_NAME
+  PAGES_ENVIRONMENT_PATH: projects/ldap_self_service/
+
+include:
+  - project: nofusscomputing/projects/gitlab-ci
+    ref: development
+    file:
+      - template/automagic.gitlab-ci.yaml
+
+
+Github (Push --mirror):
+  extends:
+    - .git_push_mirror
+  needs: []
+  rules:
+    - if: $GIT_SYNC_URL == null
+      when: never
+    - if: # Always sync including working branches
+        $CI_PIPELINE_SOURCE == "push"
+      when: always
+    - when: never

.gitmodules

@@ -0,0 +1,8 @@
+[submodule "gitlab-ci"]
+	path = gitlab-ci
+	url = https://gitlab.com/nofusscomputing/projects/gitlab-ci.git
+	branch = development
+[submodule "website-template"]
+	path = website-template
+	url = https://gitlab.com/nofusscomputing/infrastructure/website-template.git
+	branch = development

.nfc_automation.yaml

@@ -0,0 +1,8 @@
+---
+
+role_git_conf:
+  gitlab:
+    submodule_branch: "development"
+    default_branch: development
+    mr_labels: ~"type::automation" ~"impact::0" ~"priority::0"
+    auto_merge: true

CHANGELOG.md

@@ -0,0 +1,148 @@
+## 1.0.0rc4 (2023-08-19)
+
+### Features
+
+- **glpi**: [efa789f0](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/efa789f07fdf965a93a2b6fca3dbcb5072dd800c) - correct debug check [ [!12](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/12) ]
+
+## 1.0.0rc3 (2023-08-19)
+
+### Features
+
+- **selfservice**: [9b1c30a5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/9b1c30a5d4249b16a05078e4d6496961c0735194) - migrate external js to internal request [ [!11](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/11) ]
+- **NodeRED**: [b4454afe](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/b4454afe82ee0e99de98375548377204745a12f2) - add audit events to logging [ [!11](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/11) ]
+- **docker**: [527d8ffb](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/527d8ffb9696e13e326de4e3dfa434b2d1069128) - listen port updated to HTTP/80 [ [!11](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/11) ]
+- **docker**: [90aa8d59](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/90aa8d59bd00794dc085a07ef37a19c954e0208b) - remove specified data volumes [ [!11](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/11) ]
+
+## 1.0.0rc2 (2023-08-19)
+
+### Bug Fixes
+
+- **callback_redirect**: [4f2397a4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/4f2397a473e13d649c92f3ef876f218d8e22ec3e) - dont use full url use relative [ [!10](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/10) ]
+
+## 1.0.0rc1 (2023-08-18)
+
+### Bug Fixes
+
+- **glpi**: [b4a58736](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/b4a587362fea1bc5554c71fbd3cb4f337be21f0a) - use updated vars for glpi config [ [!7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/7) ]
+- **password_reset**: [0f8fd196](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/0f8fd1961d98663412790d5b0e50028780130788) - use updated vars for password change [ [!7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/7) ]
+- **ldap_filter**: [7645117a](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/7645117a8cf120950f96dc9282634903232762e3) - use updated vars for password change [ [!7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/7) ]
+- **ldap_filter**: [a3bb6ec7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/a3bb6ec76b738fc0c688b99974c83fa237bdad08) - use update vars [ [!7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/7) ]
+- **token_auth**: [1a995c43](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/1a995c439480b6cb7da0c3e76d51dada2dbf93d4) - corrected logic to check token [ [!6](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/6) ]
+- **change_password**: [04a95f4b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/04a95f4b1def5b52229a3574e8780d5fbc8d6f7c) - use session object [ [!5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/5) ]
+- **html_forms**: [afddc853](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/afddc8532824f8251e67d7d83cc47572a07e8972) - valid path check use new vars [ [!5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/5) ]
+- **html_forms**: [cf845ea1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/cf845ea13f939f6f4a8c2d11746c7b09f1f6343a) - remove '/' suffix from post path [ [!5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/5) ]
+- **change_password**: [d64e83df](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d64e83df4daa7e220d29d2a47bc52d7e7d97c9ae) - use uppercase for hash name [ [!4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/4) ]
+- **docker**: [7824842c](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/7824842cecba1bb102d04c0be33ecc1ed25360e2) - npm permissions issue [ [!3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/3) ]
+- **logout**: [8fb49a48](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/8fb49a4834f8e3d944a3db421a369a559d695add) - prevent favicon.ico from triggering logon [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) [#2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/2) ]
+- **logout**: [0318c478](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/0318c478feb8c3319c3ca35821d609bb436c4302) - dont error if file absent [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) [#2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/2) ]
+- **auth**: [df98fc4a](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/df98fc4a85c96c3471d5729783bce971d5c469c0) - start auth at beginning not cookie check [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) ]
+- **cron**: [65a370b8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/65a370b8100d6579f451c097bf5633b8332b01dd) - auto load delay set to 5 seconds [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) ]
+- **docker**: [82cf7529](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/82cf75291db7f2aaacee92390f06d302921163fb) - clone correct branch
+- **user_details**: [dad83f33](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/dad83f337385719a0e6b70003d9313767e55501a) - fetch user details from session [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **html**: [25cbe300](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/25cbe3003311274c2d1b4af09e42ccf8f34f3fe9) - correct home link [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **config**: [63d9ada8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/63d9ada8c169e7e61ae96947b2cffd681c624cd7) - load config in order [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **cron**: [e423004b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/e423004b2d306a0c2c86b466cfaad69da8b8b056) - ensure path and filename kept [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **http_response**: [fb5ae412](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/fb5ae41259ba0c380057484c41b9c36da652c69e) - headers already sent error [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **files**: [84fd7d57](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/84fd7d577a75f000014e09a91da84ff38956f92c) - use correct path form header files [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **auth**: [6cb2be2b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/6cb2be2b2b2d4cc4a58c90de502b019c7bd59bea) - auth flow must return to calling node [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **cookie**: [d8d19489](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d8d194896338b6c595a61f57bbe265c45d6c379f) - use camel case [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **cron**: [8e384ac6](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/8e384ac6201f3a4d728cf05410e7443a96c63a1a) - when nothing ensure the flow returns [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **cron**: [ed3c36d6](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ed3c36d6be86a1506f4344f454af1e17888913dd) - create session dir if not exist [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **home_button**: [9c4f686c](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/9c4f686cc488af3e953f1ecb00cc552cdd5080dd) - home button was submitting form [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **node_dependency**: [061b0b7d](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/061b0b7dc43f303259d9e89340cbab4054792f7a) - add missing node-red-contrib-filesystem [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **html**: [66d6edb6](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/66d6edb63e44ffbf981ea9a3d45c022a63f0ef5b) - results failed to display [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- [80569b9b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/80569b9b2885808069da918a15fc65fa4934a432) - glpi set req details and fix disable submit button on click [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **authorization**: [ace369dc](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ace369dc9490ef651e0f4c7cc3754faea7d737a3) - auth on all http paths including post. [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **token**: [7a09be41](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/7a09be41a276ffd7d374c8b36fd4aef6d03c5dc4) - prioritize qs token over cookie [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **auth**: [c3477ab0](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/c3477ab0caf45d63f283df167008a0076b6eb568) - befor processing, confirm item not empty [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+
+### Code Refactor
+
+- **config**: [bc6f255e](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/bc6f255e28c3aa2d95b9df8f491128e734076069) - move config to home flow [ [!8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/8) ]
+- **random**: [f2e0b5c9](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/f2e0b5c9ba7bd88c724010f158b886b6f4cecf91) - NodeRED changes that are not changes [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) ]
+- **auth**: [1d6bceb5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/1d6bceb5ab6a459bc6647e315e4170f93c54e795) - group rearrangement for clarity [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **status_codes**: [ad6b1448](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ad6b1448cf82ccf5ff761d757a55ce79a4fda21d) - improve non HTTP/20x flow [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **flow**: [b5a6a803](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/b5a6a803c3804bc27a69f46a610040a62009b875) - improve non HTTP/20x workflow [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **authentication**: [4a5714b0](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/4a5714b09a597c8599677635f94ee79a6d61d1de) - improve workflow adding cookie check first [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- [96eb1f5a](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/96eb1f5a2ac1154689b4e116228e480bd027e6ee) - prettyfy the flow [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **config**: [a18b5643](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/a18b564336b8a0b9f20a00e7e326763fb60f52eb) - migrating from env vars to global config vars [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **var**: [de9063e6](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/de9063e62229b27d3869d0b471c6a92e2f34434c) - use msg.itsm not msg.glpi var [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [7dcd892f](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/7dcd892f9a86def2fa58d20eb362a937764ba62a) - use rand string function [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+
+### Continious Integration
+
+- [3bc705ca](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/3bc705caff469f81f805f3b890d829398376cc02) - add CI jobs [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+
+### Documentaton / Guides
+
+- **docker**: [6c88529a](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/6c88529a73c477ea07d2637d9b26b067d60c48df) - added script docs [ [!3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/3) [#4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/4) [#5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/5) ]
+- **logout**: [1d974579](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/1d974579d6f2032bb72f3fe5c51462020b0e28a3) - add NodeRed group docs [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) [#2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/2) ]
+- **readme**: [c0c87772](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/c0c877726948bb8f87898aea6faa5eb568bb2a4a) - fix docs link
+- **oauth2**: [d453b7f9](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d453b7f95775fcf5da9d8de92e7d14f025d687a9) - document config [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **http_server**: [bca0165b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/bca0165b01d963ea2df6a4ca0c234f0b84841993) - intro docs added to groups [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **http_server**: [299ec879](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/299ec8793d9f15cd5cc83997cfe3a0511e9af9de) - added docs to some groups [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+
+### Features
+
+- **npm_module**: [46f01f07](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/46f01f07b27adc527d710222684ccf62e4e9df0f) - install passport-keycloak [ [!9](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/9) ]
+- **docker**: [90bc0804](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/90bc0804b1e42b25e6d5ffea84875e76f9194f84) - add encrypt/decrypt scripts to /bin [ [!3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/3) [#4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/4) ]
+- **flows_cred**: [93fad136](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/93fad1368169a64a52e0f5f1b8603193fb22199e) - bash decryption output to flows_cred.json.tmp [ [!3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/3) [#4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/4) ]
+- **flows_cred**: [d001f36c](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d001f36c6ba63e87add85fcc97b89d6292a7b2de) - bash encryption script [ [!3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/3) [#4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/4) ]
+- **auth**: [12b528d2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/12b528d2f103c583664a8f3a17cb395eae6d01a0) - add logout path check [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) [#2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/2) ]
+- **logout**: [e6d43868](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/e6d4386848966d2afae0d8280fbb39af02dda9a7) - remove cookie and delete session. [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) [#2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/2) ]
+- **ui**: [c27c12bb](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/c27c12bb29a4cd3f6010bca237e9cf3d42f9dac9) - add logout button [ [!2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/2) [#2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/issues/2) ]
+- **docs**: [2a0ad03a](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/2a0ad03acf1ef8f2dac76806ed6a487985c06720) - publish to website [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **flows_cred**: [f6d24d76](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/f6d24d76b3c1f289ee2204e9dca6aeb650870df5) - Bash script to decrypt [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **token_auth**: [7e0c798b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/7e0c798bae2c9c9862398779e6cca1f6558b0eda) - Added a link-in node for other flows to use [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **oauth2**: [a83c8b74](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/a83c8b74d63713d8fe827d5aad1ada064a3b8553) - fetch remaining user details from ldap [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **glpi**: [d4897a94](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d4897a946b02dae0046f646be542d705da2acfd0) - config moved to config node [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **oauth2**: [224c1168](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/224c11684e5d0927fb7e15bbe98cdd81f85c715c) - return HTTP/400 when no config found [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **config**: [bc9a83f3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/bc9a83f3bcc9f0c0ccf74fb40ca402db3951f51b) - return HTTP/400 if no config found [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **oauth2**: [e9ea2bf3](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/e9ea2bf3c9b3bb9d1109d178884a0504f3a2f0ab) - added oauth2 authentication [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **nodered**: [31b4563e](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/31b4563e4ba592548b068a307912a618612fc667) - add package node-red-contrib-credentials [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **http**: [397f4125](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/397f41254d9f4c191338b6cf82f7bb2f59fd3b30) - add timestamp to msg.http.timestamp [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **http**: [d941fc9c](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d941fc9cc33f5d96b5ee9f2c5d1a06f4afd2adb7) - add response size to msg.http.response_size [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **docker**: [adefca88](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/adefca8832172dc832439cea227e8fb1935909c1) - move healthcheck to /admin [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **flow**: [d27dcfc6](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d27dcfc691537fac82ba8a200f197aaabb223545) - add request details to msg.http [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **docker**: [0d59e569](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/0d59e5696c4c9f430bb0651c4b1e9d53c45fca77) - only include project files needed [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **NodeRED**: [80cb70b7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/80cb70b75a16cbbf57adddd5cf96165555343ab2) - use env var 'NODE_RED_CREDENTIAL_SECRET' for credential key [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **NodeRED**: [0496e7de](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/0496e7de7a1ae0f5f08235a9b52e80942353155b) - disable projects, not needed [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **web_server**: [ff303a8e](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ff303a8e997d95c947d3d77ba357098111cc0a96) - serve self service on path '/' [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **docker**: [36de8c58](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/36de8c58a13f5c056e4e7bb287e56f519dd37fd0) - docker building added [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **NodeRED**: [cb934145](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/cb934145a6119600c89ac6814d7140ba562e4c59) - enable projects [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **NodeRED**: [98e7a890](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/98e7a890056692071cff3ffb525b4260bc4202f8) - dont show welcome message [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **NodeRED**: [843ba86c](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/843ba86c3d106f27b42f21beab35f6b4e2247612) - move admin to path /admin [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **docker**: [229737fc](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/229737fc8fb63172a4c60f00d6cc0961cabbe930) - added default nodeRED settings.js [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **project**: [77d16c8e](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/77d16c8ef824cfc63bf78d5e455568477fc7a1d7) - add ldap dependency [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **main_menu**: [b45bd8f7](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/b45bd8f7030e67ba8f1e23b0946387462231f7a5) - added user name [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **change_password**: [dc8fa690](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/dc8fa690909c30c7aae993784abf3c80f97bf99e) - user can now change their password [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **change_password**: [d1f3a244](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d1f3a2447b44cef3bbb7b9ef43ed4b4de6545f2d) - removed from dev feature flag [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **glpi**: [156f2b23](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/156f2b2360aa4c790bc14bd968358330f2b0d348) - added switch auto_assign to assign ticket to api use [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **cron**: [df06ef87](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/df06ef879ea5c96125f207b88ff5cbbe0bdf6fd3) - add cron time triggers [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **flow**: [9e18475e](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/9e18475edc2029d96ed37ee2fc1a29eb04caac7c) - add cron flow [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **form**: [6ee84086](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/6ee84086581c82ba587458c5da9f747f4d0e12b8) - on clicking submit button disable it [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [c46c076a](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/c46c076aeedb86948038b48409fdf75ddfd8abb3) - ensure user details match auth details [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [ee897003](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ee897003286cdd7521413662d34c8f5e0cd8f236) -  auto populate the user detail fields and make read only [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **auth**: [46c5e8ca](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/46c5e8caf52a6609cb35ee2cc4f8ae6e1889cdf3) - user details added to object msg.auth.user [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **token**: [b55ccaf2](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/b55ccaf2841d3da998964d0b7497f1907039e513) - user details added to token [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **http_path**: [802c6bf9](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/802c6bf9783de639a977f9332ef266ab1d0f7acb) - use config path to set the http path [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **change_password**: [c0c557d8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/c0c557d8fd817e8e5cbbf0f1e9a8d9b10c1e4f56) - added placeholder for feature [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_questions**: [ca440b87](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ca440b87fedd8a00737a0614d59bc3ca5ad8dd63) - use config directory to store [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **token_auth**: [afb8bead](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/afb8bead0c93c497c298c5089991493071f24b82) - user config dir to store sessions [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **glpi**: [d9f10086](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/d9f1008610a2581df0a2ed5f80432718b702737d) - migrate glpi to global config file [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **glpi**: [1b886760](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/1b886760ae336cebece9f660bb569ba304b1d6ff) - Create ticket and add task [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **config**: [4a7bdad0](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/4a7bdad09ad2bfa66d62cc363164801338548955) - moved env vars to a config file [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **glpi**: [928d58c8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/928d58c89b27fefe17e6e22254b35f0e8f7cfb80) - initial import from dev of glpi formcreator automation [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **developer_mode**: [55d73c6b](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/55d73c6b6a263423d8a3b4bd7e96bcf4dc0298c6) - hide incomplete features behind env variable [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **authorization**: [c88e7d94](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/c88e7d945237ed6f5efc9c0c9ca7bdf11abde72d) - added token auth [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [ce1555d4](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/ce1555d423a276ad184b348f29ebf8b18b9e1b83) - store ticket data [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [33c477e5](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/33c477e5e773c7b2da9fac2e73f9e86bf5235ccf) - update password in LDAP [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **pasword_reset**: [3b0851b8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/3b0851b8e6229b821b3ab3b8376619340e040149) - itsm ticket creation workflow added [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **form_processing**: [f03973c8](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/f03973c8b1cc4634f96dc1116ab2e7ff71cd498a) - add env var itsm_create_ticket [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [072e0702](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/072e070289a0e0f55ffefd25e460e54928c09e38) - search itsm, glpi for user [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_reset**: [a3ccd93e](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/a3ccd93e2479e6738f6ef608cbcf7048db8a58cc) - initial start of processing form [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **function**: [6a7758bc](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/6a7758bc841337e2b66f5bf297b6707a9fd21975) - generate random six char string [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **env_var**: [da8585ac](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/da8585ac2bfdf8ae85c2116b50e85e5b439f2f29) - added var http_path and user_data [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_questions**: [674b9523](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/674b952388abc4901de55cb4dd9cb94e89462a0b) - save password reset questions [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- **password_questions**: [4285ce64](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/4285ce64adbbaa47ea17391abcc27661f790837a) - read password questions file [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]
+- [98e05303](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/commit/98e0530318bb4d7a33d2b42b9b1f60df9192a58d) - add initial http and html flows [ [!1](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests/1) ]

README.md

@@ -41,6 +41,7 @@ links:
 
 - [Merge Requests (Pull Requests)](https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service/-/merge_requests)
 
+- [Documentation](http://nofusscomputing.com/projects/ldap_self_service/)
 
 
 ## Contributing

decrypt-flows-cred.sh

@@ -0,0 +1,25 @@
+#!/bin/bash
+#
+# Description:
+#     Decrypt flows_cred.json from the specified directory. You will be prompted for the decryption password.
+#
+# Usage:
+#     ./decrypt-flows-cred.sh {path to cred file, if PWD use '.'}
+#
+# Changelog:
+#     2023-08-14: Fetched script from original source <https://blog.hugopoi.net/en/2021/12/28/how-to-decrypt-flows_cred-json-from-nodered-data/>
+#                 Credit to the original author/creator.
+#     2023-08-14: Adjusted to prompt for password when running command.
+#     2023-08-14: Adjusted to output to a file called 'flows_cred.json.tmp'
+#
+
+echo -n "Please enter the flows_cred.json decryption key: ";
+read -s PASSWORD
+echo;
+
+DecryptedData=$(jq  '.["$"]' -j $1/flows_cred.json | \
+  cut -c 33- | \
+  openssl enc -aes-256-ctr -d -base64 -A -iv `jq  -r '.["$"]' $1/flows_cred.json | cut -c 1-32` -K `echo -n $PASSWORD | sha256sum | cut -c 1-64`)
+
+echo -n $DecryptedData > $1/flows_cred.json.tmp
+#echo -n $DecryptedData

dockerfile

@@ -0,0 +1,58 @@
+FROM --platform=$TARGETPLATFORM python:3.11-bullseye as CloneRepo
+
+
+RUN export DEBIAN_FRONTEND=noninteractive \
+  && dpkg-reconfigure debconf -f noninteractive
+
+RUN apt update \
+  && apt install -yq \
+    git
+
+RUN git clone --depth=1 -b development https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service.git /tmp/self_service ; ls -l /tmp/self_service
+
+
+FROM --platform=$TARGETPLATFORM nodered/node-red:3.0.2-18
+
+LABEL \
+  # org.opencontainers.image.authors="{contributor url}" \
+  org.opencontainers.image.vendor="No Fuss Computing" \
+  # org.opencontainers.image.url="{dockerhub url}" \
+  # org.opencontainers.image.documentation="{docs url}" \
+  # org.opencontainers.image.source="{repo url}" \
+  # org.opencontainers.image.revision="{git commit sha at time of build}" \
+  org.opencontainers.image.title="No Fuss Computings LDAP Self Service" \
+  org.opencontainers.image.description="A NodeRED App for LDAP Self Service" \
+  org.opencontainers.image.vendor="No Fuss Computing"
+  # org.opencontainers.image.version="{git tag}"
+
+COPY includes/ /
+
+
+COPY decrypt-flows-cred.sh /bin/decrypt-flows-cred.sh
+
+COPY encrypt-flows-cred.sh /bin/encrypt-flows-cred.sh
+
+
+COPY --from=CloneRepo /tmp/self_service/package.json /data/package.json
+
+COPY --from=CloneRepo /tmp/self_service/flows_cred.json /data/flows_cred.json
+COPY --from=CloneRepo /tmp/self_service/flows.json /data/flows.json
+
+USER root
+
+RUN  chown node-red:node-red -R /data; \
+  chown node-red:node-red -R /usr/src/node-red; \
+  chomd +x /bin/decrypt-flows-cred.sh; \
+  chmod +x /bin/encrypt-flows-cred.sh; \
+  apk update; \
+  apk add \
+    jq;
+
+USER node-red
+
+RUN cd /data; \
+  npm install --unsafe-perm --no-update-notifier --no-fund --only=production passport passport-keycloak-oauth2-oidc;
+
+HEALTHCHECK CMD curl http://localhost:80/admin || exit 1
+
+EXPOSE 80

docs/projects/ldap_self_service/docker.md

@@ -0,0 +1,41 @@
+---
+title: LDAP Self Service Docker Image
+description: How to use No Fuss Computings NodeRED LDAP Self Service Docker Image.
+date: 2023-08-15
+template: project.html
+about: https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service
+---
+
+[This docker image](https://hub.docker.com/r/nofusscomputing/ldap-selfservice) is designed to be behind a reverse-proxy. The proxy will be the service that provides ingress logging and `HTTPS` termination. NodeRED serves the the Self-Service site on `HTTP/80` at the `/` path with `/admin` path available for administering the flows. If when starting the docker container you specify an environmental variable of `NODE_RED_CREDENTIAL_SECRET` it will be used by NodeRED to decrypt your `flows_cred.json` file.
+
+Data for the container is stored in two volumes `/data` and `/usr/src/node-red`. The repo does contain a `flows_cred.json` file, however this is our credential file. It's recommended that you log into the flows admin and set the credentials to your desired values. Export it and as part of the deployment process, mount a read-only copy of your `flows_cred.json` file to path `/data/flows_cred.json` within the container.
+
+!!! danger "Security"
+    Path `/admin` should not be made publically available, as access to this path grants full access to the backend as well as access to passwords and secrets from your `flows_cred.json` file.
+
+
+## Features
+
+- NPM packages `passport` `passport-keycloak-oauth2-oidc`
+
+    > Used for keycloak authentication on admin interface
+
+## Docker Hub
+
+!!! info
+    The docker image is available via `docker pull nofusscomputing/ldap-selfservice` available tags are detailed below
+
+Available tags for the docker image is as follows:
+
+- `dev` The current working head of the repositories `development` branch.
+
+- `{\d}.{\d}.{\d}rc{\d}` The tag on the repositories `development` branch.
+
+- `{\d}.{\d}.{\d}` The tag on the repositories `master` branch. _considered stable_
+
+- `latest` The current working head of the repositories `master` branch. _considered stable_
+
+
+## Flow Credentials
+
+You can edit these from within the flow administration or use the included scripts and manually edit the `json` file. Within the container these scripts are stored in `/bin` as such can be called from any path. To decrypt `flows_cred,json` use `decrypt-flows-cred.sh /data` (you will be prompted for the decryption password) and this will output a file called `flows_cred.json.tmp` containing the decrypted `flows_cred.json`. to encrypt the temp `flows_cred.json.tmp` back into `flows_cred.json` use command `encrypt-flows-cred.sh /data`, (you will be prompted for the encryption password)

docs/projects/ldap_self_service/index.md

@@ -0,0 +1,51 @@
+---
+title: LDAP Self Service
+description: How to use No Fuss Computings NodeRED LDAP Self Service Full-Stack Application.
+date: 2023-08-14
+template: project.html
+about: https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service
+---
+
+This project is a NodeRED Full-Stack application for LDAP Self-Service. You can deploy this project by cloning the repo and adding to your NodeRED instance, or you can pull [our docker image](https://hub.docker.com/r/nofusscomputing/ldap-selfservice) that is already setup for immediate spin-up. The latter only requires that you add your credential encryption key and the credentials for LDAP, GLPI and your OAuth2 provider.
+
+
+## Features
+
+Currently this project is a work-in-progress. Whilst it can be used, some features are still in the planning stage.
+
+Self Service Features:
+
+- Edit personal details _(planned)_
+
+- Edit Self-Service password reset questions _(planned)_
+
+- Change password
+
+- Reset password
+
+General Features:
+
+- Oauth2 Authentication
+
+- Token Authentication
+
+- GLPI form to ticket flow
+
+- Cron Jobs:
+
+    - Remove expired sessions
+
+- scripts to (en/de)crypt the `flows_cred.json`
+
+
+## Usage
+
+There are two ways to use this NodeRed flow:
+
+1. Clone to the data directory of your NodeRED insance
+
+1. [Use our pre-built docker image](docker.md)
+
+!!! danger "Security"
+    if you choose your own NodeRED instance to deploy LDAP Self-Service, Care must be taken to ensure that the path the flows admin is on not be publically available, as access to this path grants full access to the backend as well as access to passwords and secrets from your `flows_cred.json` file.
+

docs/task-doc-template.md

@@ -0,0 +1,87 @@
+
+
+short summary of the task file
+
+## {Task Name}
+
+- **Name**: 
+
+- **Description**: 
+
+- **Module**: 
+
+- **Arguments**:
+
+  - 
+
+- **Conditional**: 
+
+- **Tags**: 
+
+  - 
+
+## {Task Name}
+
+- **Name**: 
+
+- **Description**: 
+
+- **Module**: 
+
+- **Arguments**:
+
+  - 
+
+- **Registers**: 
+
+- **Conditional**: 
+
+- **Tags**: 
+
+  - 
+
+
+## Variables
+
+The following variables can be customized in this task file:
+
+```yaml
+variable_name: "default_value"
+```
+
+- `variable_name`: Description of the variable.
+
+## Tags
+
+The tasks in this task file are tagged with the following tags:
+
+- 
+
+## Usage
+
+To use this Ansible task file, you can include it in your playbook or role and provide values for the required variables. Here's an example of how you can use this task file:
+
+1. Create a playbook (e.g., `your_playbook.yaml`) and define the necessary variables:
+
+```yaml
+---
+
+- hosts: your_hosts
+  vars:
+    variable_name: "value"
+  
+  tasks:
+    - include_tasks: path/to/task_file.yaml
+```
+
+2. Create a separate file for the task file (e.g., `task_file.yaml`) and copy the content of the task file into it.
+
+3. Run the playbook:
+
+```shell
+ansible-playbook your_playbook.yaml
+```
+
+Make sure to replace the placeholder values (`variable_name`, `value`) with the appropriate values for your setup.
+
+Note: You may need to adjust the playbook structure and additional tasks based on your specific requirements and the tasks you want to execute.

encrypt-flows-cred.sh

@@ -0,0 +1,29 @@
+#!/bin/bash
+#
+# Description:
+#     Encrypt flows_cred.json.tmp from the specified directory to flows_cred.json. You will be prompted for the encryption password.
+#
+# Usage:
+#     ./encrypt-flows-cred.sh {path to cred file, if PWD use '.'}
+#
+# Changelog:
+#     2023-08-15: Script creation.
+#
+
+echo -n "Please enter the flows_cred.json decryption key: ";
+read -s PASSWORD;
+echo;
+
+Rand=$(tr -dc 'A-Fa-f0-9' </dev/urandom | head -c 32);
+
+EncryptedData=$(cat $1/flows_cred.json.tmp | openssl enc -aes-256-ctr -e -a -A -iv $Rand -K `echo -n $PASSWORD | sha256sum | cut -c 1-64`)
+
+cat <<EOF > $1/flows_cred.json
+{
+    "$": "$Rand$EncryptedData"
+}
+EOF
+
+echo;
+
+rm $1/flows_cred.json.tmp;

flows_cred.json

@@ -0,0 +1,3 @@
+{
+    "$": "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"
+}

includes/data/settings.js

@@ -0,0 +1,542 @@
+/**
+ * This is the default settings file provided by Node-RED.
+ *
+ * It can contain any valid JavaScript code that will get run when Node-RED
+ * is started.
+ *
+ * Lines that start with // are commented out.
+ * Each entry should be separated from the entries above and below by a comma ','
+ *
+ * For more information about individual settings, refer to the documentation:
+ *    https://nodered.org/docs/user-guide/runtime/configuration
+ *
+ * The settings are split into the following sections:
+ *  - Flow File and User Directory Settings
+ *  - Security
+ *  - Server Settings
+ *  - Runtime Settings
+ *  - Editor Settings
+ *  - Node Settings
+ *
+ **/
+
+module.exports = {
+
+    /*******************************************************************************
+     * Flow File and User Directory Settings
+     *  - flowFile
+     *  - credentialSecret
+     *  - flowFilePretty
+     *  - userDir
+     *  - nodesDir
+     ******************************************************************************/
+    
+        /** The file containing the flows. If not set, defaults to flows_<hostname>.json **/
+        flowFile: 'flows.json',
+    
+        /** By default, credentials are encrypted in storage using a generated key. To
+         * specify your own secret, set the following property.
+         * If you want to disable encryption of credentials, set this property to false.
+         * Note: once you set this property, do not change it - doing so will prevent
+         * node-red from being able to decrypt your existing credentials and they will be
+         * lost.
+         */
+        credentialSecret: process.env.NODE_RED_CREDENTIAL_SECRET,
+    
+        /** By default, the flow JSON will be formatted over multiple lines making
+         * it easier to compare changes when using version control.
+         * To disable pretty-printing of the JSON set the following property to false.
+         */
+        flowFilePretty: true,
+    
+        /** By default, all user data is stored in a directory called `.node-red` under
+         * the user's home directory. To use a different location, the following
+         * property can be used
+         */
+        //userDir: '/home/nol/.node-red/',
+    
+        /** Node-RED scans the `nodes` directory in the userDir to find local node files.
+         * The following property can be used to specify an additional directory to scan.
+         */
+        //nodesDir: '/home/nol/.node-red/nodes',
+    
+    /*******************************************************************************
+     * Security
+     *  - adminAuth
+     *  - https
+     *  - httpsRefreshInterval
+     *  - requireHttps
+     *  - httpNodeAuth
+     *  - httpStaticAuth
+     ******************************************************************************/
+    
+        /** To password protect the Node-RED editor and admin API, the following
+         * property can be used. See http://nodered.org/docs/security.html for details.
+         */
+        //adminAuth: {
+        //    type: "credentials",
+        //    users: [{
+        //        username: "admin",
+        //        password: "$2a$08$zZWtXTja0fB1pzD4sHCMyOCMYz2Z6dNbM6tl8sJogENOMcxWV9DN.",
+        //        permissions: "*"
+        //    }]
+        //},
+    
+        /** The following property can be used to enable HTTPS
+         * This property can be either an object, containing both a (private) key
+         * and a (public) certificate, or a function that returns such an object.
+         * See http://nodejs.org/api/https.html#https_https_createserver_options_requestlistener
+         * for details of its contents.
+         */
+    
+        /** Option 1: static object */
+        //https: {
+        //  key: require("fs").readFileSync('privkey.pem'),
+        //  cert: require("fs").readFileSync('cert.pem')
+        //},
+    
+        /** Option 2: function that returns the HTTP configuration object */
+        // https: function() {
+        //     // This function should return the options object, or a Promise
+        //     // that resolves to the options object
+        //     return {
+        //         key: require("fs").readFileSync('privkey.pem'),
+        //         cert: require("fs").readFileSync('cert.pem')
+        //     }
+        // },
+    
+        /** If the `https` setting is a function, the following setting can be used
+         * to set how often, in hours, the function will be called. That can be used
+         * to refresh any certificates.
+         */
+        //httpsRefreshInterval : 12,
+    
+        /** The following property can be used to cause insecure HTTP connections to
+         * be redirected to HTTPS.
+         */
+        //requireHttps: true,
+    
+        /** To password protect the node-defined HTTP endpoints (httpNodeRoot),
+         * including node-red-dashboard, or the static content (httpStatic), the
+         * following properties can be used.
+         * The `pass` field is a bcrypt hash of the password.
+         * See http://nodered.org/docs/security.html#generating-the-password-hash
+         */
+        //httpNodeAuth: {user:"user",pass:"$2a$08$zZWtXTja0fB1pzD4sHCMyOCMYz2Z6dNbM6tl8sJogENOMcxWV9DN."},
+        //httpStaticAuth: {user:"user",pass:"$2a$08$zZWtXTja0fB1pzD4sHCMyOCMYz2Z6dNbM6tl8sJogENOMcxWV9DN."},
+    
+    /*******************************************************************************
+     * Server Settings
+     *  - uiPort
+     *  - uiHost
+     *  - apiMaxLength
+     *  - httpServerOptions
+     *  - httpAdminRoot
+     *  - httpAdminMiddleware
+     *  - httpNodeRoot
+     *  - httpNodeCors
+     *  - httpNodeMiddleware
+     *  - httpStatic
+     *  - httpStaticRoot
+     ******************************************************************************/
+    
+        /** the tcp port that the Node-RED web server is listening on */
+        uiPort: process.env.PORT || 80,
+    
+        /** By default, the Node-RED UI accepts connections on all IPv4 interfaces.
+         * To listen on all IPv6 addresses, set uiHost to "::",
+         * The following property can be used to listen on a specific interface. For
+         * example, the following would only allow connections from the local machine.
+         */
+        //uiHost: "127.0.0.1",
+    
+        /** The maximum size of HTTP request that will be accepted by the runtime api.
+         * Default: 5mb
+         */
+        //apiMaxLength: '5mb',
+    
+        /** The following property can be used to pass custom options to the Express.js
+         * server used by Node-RED. For a full list of available options, refer
+         * to http://expressjs.com/en/api.html#app.settings.table
+         */
+        //httpServerOptions: { },
+    
+        /** By default, the Node-RED UI is available at http://localhost:1880/
+         * The following property can be used to specify a different root path.
+         * If set to false, this is disabled.
+         */
+        httpAdminRoot: '/admin',
+    
+        /** The following property can be used to add a custom middleware function
+         * in front of all admin http routes. For example, to set custom http
+         * headers. It can be a single function or an array of middleware functions.
+         */
+        // httpAdminMiddleware: function(req,res,next) {
+        //    // Set the X-Frame-Options header to limit where the editor
+        //    // can be embedded
+        //    //res.set('X-Frame-Options', 'sameorigin');
+        //    next();
+        // },
+    
+    
+        /** Some nodes, such as HTTP In, can be used to listen for incoming http requests.
+         * By default, these are served relative to '/'. The following property
+         * can be used to specifiy a different root path. If set to false, this is
+         * disabled.
+         */
+        //httpNodeRoot: '/red-nodes',
+    
+        /** The following property can be used to configure cross-origin resource sharing
+         * in the HTTP nodes.
+         * See https://github.com/troygoode/node-cors#configuration-options for
+         * details on its contents. The following is a basic permissive set of options:
+         */
+        //httpNodeCors: {
+        //    origin: "*",
+        //    methods: "GET,PUT,POST,DELETE"
+        //},
+    
+        /** If you need to set an http proxy please set an environment variable
+         * called http_proxy (or HTTP_PROXY) outside of Node-RED in the operating system.
+         * For example - http_proxy=http://myproxy.com:8080
+         * (Setting it here will have no effect)
+         * You may also specify no_proxy (or NO_PROXY) to supply a comma separated
+         * list of domains to not proxy, eg - no_proxy=.acme.co,.acme.co.uk
+         */
+    
+        /** The following property can be used to add a custom middleware function
+         * in front of all http in nodes. This allows custom authentication to be
+         * applied to all http in nodes, or any other sort of common request processing.
+         * It can be a single function or an array of middleware functions.
+         */
+        //httpNodeMiddleware: function(req,res,next) {
+        //    // Handle/reject the request, or pass it on to the http in node by calling next();
+        //    // Optionally skip our rawBodyParser by setting this to true;
+        //    //req.skipRawBodyParser = true;
+        //    next();
+        //},
+    
+        /** When httpAdminRoot is used to move the UI to a different root path, the
+         * following property can be used to identify a directory of static content
+         * that should be served at http://localhost:1880/.
+         * When httpStaticRoot is set differently to httpAdminRoot, there is no need 
+         * to move httpAdminRoot
+         */
+        //httpStatic: '/home/nol/node-red-static/', //single static source
+        /* OR multiple static sources can be created using an array of objects... */
+        //httpStatic: [
+        //    {path: '/home/nol/pics/',    root: "/img/"}, 
+        //    {path: '/home/nol/reports/', root: "/doc/"}, 
+        //],
+    
+        /**  
+         * All static routes will be appended to httpStaticRoot
+         * e.g. if httpStatic = "/home/nol/docs" and  httpStaticRoot = "/static/"
+         *      then "/home/nol/docs" will be served at "/static/"
+         * e.g. if httpStatic = [{path: '/home/nol/pics/', root: "/img/"}]
+         *      and httpStaticRoot = "/static/"
+         *      then "/home/nol/pics/" will be served at "/static/img/"
+         */
+        //httpStaticRoot: '/static/',
+    
+    /*******************************************************************************
+     * Runtime Settings
+     *  - lang
+     *  - runtimeState
+     *  - diagnostics
+     *  - logging
+     *  - contextStorage
+     *  - exportGlobalContextKeys
+     *  - externalModules
+     ******************************************************************************/
+    
+        /** Uncomment the following to run node-red in your preferred language.
+         * Available languages include: en-US (default), ja, de, zh-CN, zh-TW, ru, ko
+         * Some languages are more complete than others.
+         */
+        // lang: "de",
+    
+        /** Configure diagnostics options 
+         * - enabled:  When `enabled` is `true` (or unset), diagnostics data will
+         *   be available at http://localhost:1880/diagnostics  
+         * - ui: When `ui` is `true` (or unset), the action `show-system-info` will 
+         *   be available to logged in users of node-red editor  
+        */
+        diagnostics: {
+            /** enable or disable diagnostics endpoint. Must be set to `false` to disable */
+            enabled: true,
+            /** enable or disable diagnostics display in the node-red editor. Must be set to `false` to disable */
+            ui: true,
+        },
+        /** Configure runtimeState options 
+         * - enabled:  When `enabled` is `true` flows runtime can be Started/Stoped 
+         *   by POSTing to available at http://localhost:1880/flows/state  
+         * - ui: When `ui` is `true`, the action `core:start-flows` and 
+         *   `core:stop-flows` will be available to logged in users of node-red editor
+         *   Also, the deploy menu (when set to default) will show a stop or start button
+         */
+        runtimeState: {
+            /** enable or disable flows/state endpoint. Must be set to `false` to disable */
+            enabled: false,
+            /** show or hide runtime stop/start options in the node-red editor. Must be set to `false` to hide */
+            ui: false,
+        },
+        /** Configure the logging output */
+        logging: {
+            /** Only console logging is currently supported */
+            console: {
+                /** Level of logging to be recorded. Options are:
+                 * fatal - only those errors which make the application unusable should be recorded
+                 * error - record errors which are deemed fatal for a particular request + fatal errors
+                 * warn - record problems which are non fatal + errors + fatal errors
+                 * info - record information about the general running of the application + warn + error + fatal errors
+                 * debug - record information which is more verbose than info + info + warn + error + fatal errors
+                 * trace - record very detailed logging + debug + info + warn + error + fatal errors
+                 * off - turn off all logging (doesn't affect metrics or audit)
+                 */
+                level: "info",
+                /** Whether or not to include metric events in the log output */
+                metrics: false,
+                /** Whether or not to include audit events in the log output */
+                audit: true
+            }
+        },
+    
+        /** Context Storage
+         * The following property can be used to enable context storage. The configuration
+         * provided here will enable file-based context that flushes to disk every 30 seconds.
+         * Refer to the documentation for further options: https://nodered.org/docs/api/context/
+         */
+        //contextStorage: {
+        //    default: {
+        //        module:"localfilesystem"
+        //    },
+        //},
+    
+        /** `global.keys()` returns a list of all properties set in global context.
+         * This allows them to be displayed in the Context Sidebar within the editor.
+         * In some circumstances it is not desirable to expose them to the editor. The
+         * following property can be used to hide any property set in `functionGlobalContext`
+         * from being list by `global.keys()`.
+         * By default, the property is set to false to avoid accidental exposure of
+         * their values. Setting this to true will cause the keys to be listed.
+         */
+        exportGlobalContextKeys: false,
+    
+        /** Configure how the runtime will handle external npm modules.
+         * This covers:
+         *  - whether the editor will allow new node modules to be installed
+         *  - whether nodes, such as the Function node are allowed to have their
+         * own dynamically configured dependencies.
+         * The allow/denyList options can be used to limit what modules the runtime
+         * will install/load. It can use '*' as a wildcard that matches anything.
+         */
+        externalModules: {
+            // autoInstall: false,   /** Whether the runtime will attempt to automatically install missing modules */
+            // autoInstallRetry: 30, /** Interval, in seconds, between reinstall attempts */
+            // palette: {              /** Configuration for the Palette Manager */
+            //     allowInstall: true, /** Enable the Palette Manager in the editor */
+            //     allowUpdate: true,  /** Allow modules to be updated in the Palette Manager */
+            //     allowUpload: true,  /** Allow module tgz files to be uploaded and installed */
+            //     allowList: ['*'],
+            //     denyList: [],
+            //     allowUpdateList: ['*'],
+            //     denyUpdateList: []
+            // },
+            // modules: {              /** Configuration for node-specified modules */
+            //     allowInstall: true,
+            //     allowList: [],
+            //     denyList: []
+            // }
+        },
+    
+    
+    /*******************************************************************************
+     * Editor Settings
+     *  - disableEditor
+     *  - editorTheme
+     ******************************************************************************/
+    
+        /** The following property can be used to disable the editor. The admin API
+         * is not affected by this option. To disable both the editor and the admin
+         * API, use either the httpRoot or httpAdminRoot properties
+         */
+        //disableEditor: false,
+    
+        /** Customising the editor
+         * See https://nodered.org/docs/user-guide/runtime/configuration#editor-themes
+         * for all available options.
+         */
+        editorTheme: {
+            /** The following property can be used to set a custom theme for the editor.
+             * See https://github.com/node-red-contrib-themes/theme-collection for
+             * a collection of themes to chose from.
+             */
+            //theme: "",
+    
+            /** To disable the 'Welcome to Node-RED' tour that is displayed the first
+             * time you access the editor for each release of Node-RED, set this to false
+             */
+            tours: false,
+    
+            palette: {
+                /** The following property can be used to order the categories in the editor
+                 * palette. If a node's category is not in the list, the category will get
+                 * added to the end of the palette.
+                 * If not set, the following default order is used:
+                 */
+                //categories: ['subflows', 'common', 'function', 'network', 'sequence', 'parser', 'storage'],
+            },
+    
+            projects: {
+                /** To enable the Projects feature, set this value to true */
+                enabled: false,
+                workflow: {
+                    /** Set the default projects workflow mode.
+                     *  - manual - you must manually commit changes
+                     *  - auto - changes are automatically committed
+                     * This can be overridden per-user from the 'Git config'
+                     * section of 'User Settings' within the editor
+                     */
+                    mode: "manual"
+                }
+            },
+    
+            codeEditor: {
+                /** Select the text editor component used by the editor.
+                 * As of Node-RED V3, this defaults to "monaco", but can be set to "ace" if desired
+                 */
+                lib: "monaco",
+                options: {
+                    /** The follow options only apply if the editor is set to "monaco"
+                     *
+                     * theme - must match the file name of a theme in
+                     * packages/node_modules/@node-red/editor-client/src/vendor/monaco/dist/theme
+                     * e.g. "tomorrow-night", "upstream-sunburst", "github", "my-theme"
+                     */
+                    // theme: "vs",
+                    /** other overrides can be set e.g. fontSize, fontFamily, fontLigatures etc.
+                     * for the full list, see https://microsoft.github.io/monaco-editor/api/interfaces/monaco.editor.IStandaloneEditorConstructionOptions.html
+                     */
+                    //fontSize: 14,
+                    //fontFamily: "Cascadia Code, Fira Code, Consolas, 'Courier New', monospace",
+                    //fontLigatures: true,
+                }
+            }
+        },
+    
+    /*******************************************************************************
+     * Node Settings
+     *  - fileWorkingDirectory
+     *  - functionGlobalContext
+     *  - functionExternalModules
+     *  - nodeMessageBufferMaxLength
+     *  - ui (for use with Node-RED Dashboard)
+     *  - debugUseColors
+     *  - debugMaxLength
+     *  - execMaxBufferSize
+     *  - httpRequestTimeout
+     *  - mqttReconnectTime
+     *  - serialReconnectTime
+     *  - socketReconnectTime
+     *  - socketTimeout
+     *  - tcpMsgQueueSize
+     *  - inboundWebSocketTimeout
+     *  - tlsConfigDisableLocalFiles
+     *  - webSocketNodeVerifyClient
+     ******************************************************************************/
+    
+        /** The working directory to handle relative file paths from within the File nodes
+         * defaults to the working directory of the Node-RED process.
+         */
+        //fileWorkingDirectory: "",
+    
+        /** Allow the Function node to load additional npm modules directly */
+        functionExternalModules: true,
+    
+        /** The following property can be used to set predefined values in Global Context.
+         * This allows extra node modules to be made available with in Function node.
+         * For example, the following:
+         *    functionGlobalContext: { os:require('os') }
+         * will allow the `os` module to be accessed in a Function node using:
+         *    global.get("os")
+         */
+        functionGlobalContext: {
+            // os:require('os'),
+        },
+    
+        /** The maximum number of messages nodes will buffer internally as part of their
+         * operation. This applies across a range of nodes that operate on message sequences.
+         * defaults to no limit. A value of 0 also means no limit is applied.
+         */
+        //nodeMessageBufferMaxLength: 0,
+    
+        /** If you installed the optional node-red-dashboard you can set it's path
+         * relative to httpNodeRoot
+         * Other optional properties include
+         *  readOnly:{boolean},
+         *  middleware:{function or array}, (req,res,next) - http middleware
+         *  ioMiddleware:{function or array}, (socket,next) - socket.io middleware
+         */
+        //ui: { path: "ui" },
+    
+        /** Colourise the console output of the debug node */
+        //debugUseColors: true,
+    
+        /** The maximum length, in characters, of any message sent to the debug sidebar tab */
+        debugMaxLength: 1000,
+    
+        /** Maximum buffer size for the exec node. Defaults to 10Mb */
+        //execMaxBufferSize: 10000000,
+    
+        /** Timeout in milliseconds for HTTP request connections. Defaults to 120s */
+        //httpRequestTimeout: 120000,
+    
+        /** Retry time in milliseconds for MQTT connections */
+        mqttReconnectTime: 15000,
+    
+        /** Retry time in milliseconds for Serial port connections */
+        serialReconnectTime: 15000,
+    
+        /** Retry time in milliseconds for TCP socket connections */
+        //socketReconnectTime: 10000,
+    
+        /** Timeout in milliseconds for TCP server socket connections. Defaults to no timeout */
+        //socketTimeout: 120000,
+    
+        /** Maximum number of messages to wait in queue while attempting to connect to TCP socket
+         * defaults to 1000
+         */
+        //tcpMsgQueueSize: 2000,
+    
+        /** Timeout in milliseconds for inbound WebSocket connections that do not
+         * match any configured node. Defaults to 5000
+         */
+        //inboundWebSocketTimeout: 5000,
+    
+        /** To disable the option for using local files for storing keys and
+         * certificates in the TLS configuration node, set this to true.
+         */
+        //tlsConfigDisableLocalFiles: true,
+    
+        /** The following property can be used to verify websocket connection attempts.
+         * This allows, for example, the HTTP request headers to be checked to ensure
+         * they include valid authentication information.
+         */
+        //webSocketNodeVerifyClient: function(info) {
+        //    /** 'info' has three properties:
+        //    *   - origin : the value in the Origin header
+        //    *   - req : the HTTP request
+        //    *   - secure : true if req.connection.authorized or req.connection.encrypted is set
+        //    *
+        //    * The function should return true if the connection should be accepted, false otherwise.
+        //    *
+        //    * Alternatively, if this function is defined to accept a second argument, callback,
+        //    * it can be used to verify the client asynchronously.
+        //    * The callback takes three arguments:
+        //    *   - result : boolean, whether to accept the connection or not
+        //    *   - code : if result is false, the HTTP error status to return
+        //    *   - reason: if result is false, the HTTP reason string to return
+        //    */
+        //},
+    }

mkdocs.yml

@@ -0,0 +1,30 @@
+INHERIT: website-template/mkdocs.yml
+
+docs_dir: 'docs'
+
+repo_name: LDAP Self Service
+repo_url: https://gitlab.com/nofusscomputing/projects/nodered_ldap_self_service
+edit_uri: '/-/ide/project/nofusscomputing/projects/nodered_ldap_self_service/edit/development/-/docs/'
+
+nav:
+- Home: index.md
+
+- Articles:
+
+  - articles/index.md
+
+- Projects:
+
+  - projects/index.md
+
+  - projects/ldap_self_service/index.md
+
+  - docker:
+
+    - projects/ldap_self_service/docker.md
+
+- Operations:
+
+  - operations/index.md
+
+- Contact Us: contact.md

package.json

@@ -0,0 +1,16 @@
+{
+    "name": "ldap_self_service",
+    "description": "A Node-RED Project",
+    "version": "0.0.1",
+    "dependencies": {
+        "node-red-contrib-better-ldap": "0.1.2",
+        "node-red-contrib-filesystem": "1.0.0",
+        "node-red-contrib-credentials": "0.2.2"
+    },
+    "node-red": {
+        "settings": {
+            "flowFile": "flows.json",
+            "credentialsFile": "flows_cred.json"
+        }
+    }
+}