53 lines
No EOL
1.6 KiB
Markdown
53 lines
No EOL
1.6 KiB
Markdown
---
|
|
title: Audit - lldap.yaml
|
|
description: Gremlin audit report 2026-04-20
|
|
published: true
|
|
date: 2026-04-20T11:23:13.526Z
|
|
tags: gremlin,audit
|
|
editor: markdown
|
|
dateCreated: 2026-04-20T11:23:13.526Z
|
|
---
|
|
|
|
# Audit Report — lldap.yaml
|
|
|
|
**Date:** 2026-04-20
|
|
**File:** swarm/lldap.yaml
|
|
**Type:** Docker Swarm
|
|
**Verdict:** FAIL
|
|
|
|
---
|
|
|
|
1. **Homepage labels**:
|
|
- `homepage.group=Management`
|
|
- `homepage.name=LLDAP`
|
|
- `homepage.icon=ldap.png`
|
|
- `homepage.href=https://ldap.netgrimoire.com`
|
|
- `homepage.description=Lightweight LDAP directory`
|
|
**PASS** - All labels are present and correctly configured.
|
|
|
|
2. **Uptime Kuma labels**:
|
|
- `kuma.lldap.http.name=LLDAP`
|
|
- `kuma.lldap.http.url=http://lldap:17170`
|
|
**PASS** - All Uptime Kuma labels are present and correctly configured.
|
|
|
|
3. **Caddy labels on exposed services**:
|
|
- `caddy=ldap.netgrimoire.com`
|
|
- `caddy.reverse_proxy=lldap:17170`
|
|
**FAIL** - Caddy configuration is missing for both `LLDAP` service ports (17170 and 3890). Fix by adding appropriate Caddy labels for each port.
|
|
|
|
4. **Placement constraints**:
|
|
- `node.hostname == docker4`
|
|
**PASS** - Constraints are correctly applied to both services.
|
|
|
|
5. **Volumes use /DockerVol/<service> path convention**:
|
|
- `lldap-db`: `/DockerVol/lldap-db/data:/var/lib/postgresql/data`
|
|
- `lldap`: `/DockerVol/lldap/data:/data`
|
|
**PASS** - All volumes follow the specified path convention.
|
|
|
|
6. **Network references external netgrimoire overlay**:
|
|
- Network `netgrimoire` is marked as `external: true`
|
|
**PASS** - External network reference is correctly set up.
|
|
|
|
**VERDICT: FAIL**
|
|
|
|
(1 item failed) |