Skip to content

cloudware-ou/active-directory-manager

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

146 Commits
.github/workflows
.github/workflows
 
 
cmdlets
cmdlets
 
 
rest-api
rest-api
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
NOTICE.txt
NOTICE.txt
 
 
README.md
README.md
 
 

Repository files navigation

Active Directory Manager

A software component designed to send queries to the Active Directory and retrieve the responses.

How to Use the Application

1. PostgreSQL Database Setup

Ensure that a PostgreSQL database is running.

2. Set Environment Variables

Before starting the application, set the following environment variables. Make sure to update your database credentials.

db_user=adm
db_password=password
db_host=localhost
db_name=active_directory_commands
db_port=5432

3. Start the Spring Boot Application

Go to the rest-api folder and run the app:

./gradlew bootRun

4. Build Docker Image

Go to the cmdlets folder and build the Docker image using the following command (docker is substitutable with podman in this and the following steps):

docker build -t adm .

5. Run the Docker Container

You need to have a working Windows Server with Active Directory and SSH enabled for this step.

Run the container, which will execute the added command with the following command:

docker run -it --rm \
-v ~/.ssh/yourprivatekey:/app/privatekey \
-v ~/.ssh/known_hosts:/root/.ssh/known_hosts \
-e ADServer="server-ip" \
-e ADUsername="vm-admin" \
-e db_user="adm" \
-e db_password="password" \
-e db_host="localhost" \
-e db_name="active_directory_commands" \
-e db_port="5432" \
--network host adm

Specifying your known_hosts is optional but allows to avoid confirming SSH prompt every time you run the container.

NB! Do not forget to change your database and Windows Server (AD) credentials. In place of ~/.ssh/yourprivatekey provide path to your SSH private key from Windows Server.

If you are using Docker Desktop do following steps:

  1. Sign in to your Docker account in Docker Desktop.
  2. Navigate to Settings.
  3. Under the Resource tab, select Network.
  4. Check the Enable host networking option.
  5. Select Apply and restart.

6. Access Swagger UI

You can access the Swagger UI at:

http://localhost:8080/swagger-ui/index.html

7. Make a HTTP request

The payload (or query parameters in case of GET/DELETE requests) should contain arguments that you want to pass to a relevant AD command. Switch parameters should have a 'true' value. Refer to Active Directory Module documentation for the reference. The only known exceptions to the documentation are passwords (AccountPassword, OldPassword, NewPassword), which have to be specified as plaintext (as shown here).

Example payloads

  • Example for Adding a New User: /users - POST
{
  "Name": "Ryan Gosling",
  "GivenName": "Ryan",
  "Surname": "Gosling",
  "SamAccountName": "ryangosling",
  "Path": "CN=Users,DC=Domain,DC=ee", 
  "Enabled": true,
  "AccountPassword": "ComplexP@ssw0rd4567"
}
  • Example for getting all users: /users - GET
{
  "Filter": "*",
  "SearchBase": "DC=Domain,DC=ee"
}
  • Example for getting a single user:
{
    "Identity": "CN=Ryan Gosling,CN=Users,DC=Domain,DC=ee"
}
  • Other payloads:

/groups - POST

{
 "Name": "Drive Cast",
 "SamAccountName": "DriveCast",
 "GroupCategory": "Security",
 "GroupScope": "Global",
 "DisplayName": "Drive Cast",
 "Path": "CN=Users,DC=Domain,DC=ee",
 "Description": "Members of this group are part of Drive movie cast"
}

/groups/members - POST

{
    "Identity": "CN=Drive Cast,CN=Users,DC=Domain,DC=ee",
    "Members": ["CN=Ryan Gosling,CN=Users,DC=Domain,DC=ee"]
}

/groups - GET

{
    "Identity": "CN=Drive Cast,CN=Users,DC=Domain,DC=ee"
}

8. View Command Output

After command execution, you will see the command output (in JSON format) together with a relevant status code in the Swagger UI response.

Jenkins Pipeline for Automated Testing and Building

There is also a Jenkins pipeline that automates the testing and building process for this application. The pipeline executes tests, builds the Spring Boot application, and creates a Docker container for deployment.

You can view and trigger the Jenkins job here:

Jenkins Pipeline - Active Directory Manager

The pipeline performs the following steps:

  1. Test Execution: Runs automated tests to ensure that the application is functioning as expected.
  2. Build Spring Boot App: Compiles and builds the Spring Boot application.
  3. Build Docker Image: Creates a Docker image of the PowerShell component.

This pipeline ensures that the application is tested and built in a repeatable and automated manner, reducing the potential for errors during manual setup.

License

Active Directory Manager is licensed under the terms and conditions of the GNU Affero General Public License, Version 3.0.

If you would like to use Active Directory Manager in a proprietary software project, then it is possible to enter into a licensing agreement which makes Active Directory Manager available under the terms and conditions of the BSD 3-Clause License instead.

About

REST API and PowerShell cmdlets for Active Directory management.

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

3 tags

Packages

 
 
 

Contributors 2

  •  
  •  

Languages