1
0
mirror of https://github.com/kakwa/ldapcherry synced 2024-11-25 18:54:29 +01:00

adding parameters for group attributes + comments

This commit is contained in:
kakwa 2015-06-15 07:27:32 +02:00
parent 4a302750c0
commit 24d415280a

View File

@ -66,22 +66,43 @@ roles.file = '/etc/ldapcherry/roles.yml'
[backends] [backends]
# name of the module
ldap.module = 'ldapcherry.backend.backendLdap' ldap.module = 'ldapcherry.backend.backendLdap'
ldap.groupdn = 'ou=groups,dc=example,dc=org'
ldap.userdn = 'ou=people,dc=example,dc=org' # uri of the ldap directory
ldap.binddn = 'cn=ldapcherry,dc=example,dc=org'
ldap.password = 'password'
ldap.uri = 'ldaps://ldap.ldapcherry.org' ldap.uri = 'ldaps://ldap.ldapcherry.org'
# ca to use for ssl/tls connexion
ldap.ca = '/etc/dnscherry/TEST-cacert.pem' ldap.ca = '/etc/dnscherry/TEST-cacert.pem'
# use start tls
ldap.starttls = 'off' ldap.starttls = 'off'
# check server certificate (for tls)
ldap.checkcert = 'off' ldap.checkcert = 'off'
ldap.user_filter_tmpl = '(uid=%(username)s)' # bind dn to the ldap
ldap.group_filter_tmpl = '(member=%(username)s)' ldap.binddn = 'cn=ldapcherry,dc=example,dc=org'
ldap.search_filter_tmpl = '(|(uid=%(searchstring)s*)(sn=%(searchstring)s*))' # password of the bind dn
ldap.objectclasses = 'top, person, organizationalPerson, user' ldap.password = 'password'
ldap.dn_user_attr = 'uid' # timeout of ldap connexion (in second)
ldap.timeout = 1 ldap.timeout = 1
# groups dn
ldap.groupdn = 'ou=groups,dc=example,dc=org'
# users dn
ldap.userdn = 'ou=people,dc=example,dc=org'
# ldapsearch filter to get a user
ldap.user_filter_tmpl = '(uid=%(username)s)'
# ldapsearch filter to get groups of a user
ldap.group_filter_tmpl = '(member=%(username)s)'
# filter to search users
ldap.search_filter_tmpl = '(|(uid=%(searchstring)s*)(sn=%(searchstring)s*))'
# ldap group attributes and how to fill them
ldap.group_attr.uniqMember = "%(dn)s"
ldap.group_attr.memberUid = "%(uid)s"
# object classes of a user entry
ldap.objectclasses = 'top, person, organizationalPerson, user'
# dn entry attribute for an ldap user
ldap.dn_user_attr = 'uid'
ad.module = 'ldapcherry.backend.backendSamba4' ad.module = 'ldapcherry.backend.backendSamba4'
ad.auth = 'Administrator' ad.auth = 'Administrator'