From 7f437db53b49339615bbad9813e8beee522de493 Mon Sep 17 00:00:00 2001
From: Markus Krogh <markus@nordu.net>
Date: Thu, 7 Feb 2019 11:11:53 +0100
Subject: Use kinit and kadmin directly rather than perl script

---
 README.md | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

(limited to 'README.md')

diff --git a/README.md b/README.md
index d7ca4a9..88e12e1 100644
--- a/README.md
+++ b/README.md
@@ -39,12 +39,13 @@ The only required variable is the `LDAP_PASSWORD`
 - LDAP_PORT - defaults to `636`
 - LDAP_USER - defaults to `cn=admin,dc=nordu,dc=net`
 - LDAP_PASSWORD
-- CHANGEPW_SCRIPT - `/opt/scripts/create-kdc-principal.pl`
+- KRB5_PRINCIPAL - defaults to `pwman`
+- KRB5_KEYTAB - defaults to `keytabs/pwman.keytab`
+- KRB5_REALM - defaults to `NORDU.NET`
 - CSRF_SECRET - random 32 characters (including specials)
 - ADDRESS - sets the address the pwman server will listen on - `:3000`
 - BASE_PATH - Pwman should reside under e.g. `/sso`
 - PWNED - path to pwned passwords v2 file
-- KRB5_CONFIG - path to krb5.conf file
 
 Primarily development variables:
 
@@ -67,7 +68,7 @@ For rapid testing that does not need to build docker images you can choose to ju
 docker-compose up
 
 # In another (hacky since it is not under gopath)
-go run !(*_test).go -ldap-password secretpw -ldap-port 6636 -ldap-ssl-skip-verify -csrf-insecure -krb5-config dev/krb5.conf -changepw-script data/pwman/log-principal.pl -base-path /dev
+go run !(*_test).go -ldap-password secretpw -ldap-port 6636 -ldap-ssl-skip-verify -csrf-insecure -base-path /dev
 
 # You can now access it on http://localhost/dev
 ```
-- 
cgit v1.1