FROM alpine:latest

# The setup follows the OpenLDAP admin guide on 
# http://www.openldap.org/doc/admin24/guide.html

# Define env variables
ENV DOMAIN        example
ENV LDAPROOT      dc=example,dc=org
ENV ORGANIZATION  Example Org.
ENV DEBUG         1
ENV USER          ldap
ENV GROUP         ldap

# Install OpenLDAP with MDB backend
# openldap-clients is not really required, can be removed after evaluation.
RUN apk add --no-cache \ 
  gettext \
  openldap \
  openldap-clients \
  openldap-back-mdb

RUN mkdir /run/openldap && \
  chown ${USER}:${GROUP} /run/openldap

# Tell the ldap client about the self-signed TLS CA certificate
RUN echo "TLS_CACERT /etc/ssl/certs/CAself-cert.pem" >> /etc/openldap/ldap.conf

COPY ./entrypoint.sh /entrypoint.sh

CMD /entrypoint.sh