I have now developed the new accounts management app to the point that I think we can deploy for our existing users:
There’s an admin panel available to users with an admin flag in their LDAP entry on
/admin, which is what needs the most diligent review in regards to security. The code is very simple, so this should be easy for someone with experience in Ruby on Rails.
You will need an LDAP server running to test this app properly. I was wondering if it makes sense to just provide a low-security staging instance, which all contributors could use, instead of having to run LDAP locally. Then again, our chef cookook works just fine for firing up a local server using Vagrant, but it doesn’t create the right entries by itself (yet?). Anyway, if you want to run this on your machine, and/or contribute to the app after it’s deployed, you can ping me to set up the LDAP server with you in a call.