ITS#10037 Update argon2 README

993d7c4a · Ondřej Kuzník · Quanah Gibson-Mount · 9c18a53a · 993d7c4a
Commit 993d7c4a authored 1 year ago by Ondřej Kuzník Committed by Quanah Gibson-Mount 1 year ago
--- a/servers/slapd/pwmods/README.argon2
+++ b/servers/slapd/pwmods/README.argon2
@@ -15,28 +15,16 @@ Both hash the password "secret", the first using the salt "saltsalt", the second
 Building
 --------

-1) Customize the OPENLDAP variable in Makefile to point to the OpenLDAP
-source root.
-
-For initial testing you might also want to edit DEFS to define
-SLAPD_ARGON2_DEBUG, which enables logging to stderr (don't leave this on
-in production, as it prints passwords in cleartext).
-
-2) Run 'make' to produce argon2.so
-
-3) Copy argon2.so somewhere permanent.
-
-4) Edit your slapd.conf (eg. /etc/ldap/slapd.conf), and add:
-
-moduleload ...path/to/argon2.so
-
-5) Restart slapd.
-
+This module is now part of regular OpenLDAP build process and enabled if
+libsodium or libargon2 library and the corresponding development headers are
+present. You can also choose the library to build against if you prefer by
+passing --enable-argon2=<libsodium|libargon2> to your configure invocation.

 Configuring
 -----------

-The {ARGON2} password scheme should now be recognised.
+Load the argon2 module (e.g. with olcModuleLoad or moduleload) and the
+{ARGON2} password scheme should now be recognised.

 You can also tell OpenLDAP to use one of this scheme when processing LDAP
 Password Modify Extended Operations, thanks to the password-hash option in