diff --git a/conf/roles.yml b/conf/roles.yml
index c3bafe4..f3ed9da 100644
--- a/conf/roles.yml
+++ b/conf/roles.yml
@@ -1,5 +1,6 @@
admin-lv3:
display_name: Administrators Level 3
+ description: Super administrators of the system
backends_groups:
ldap:
- cn=dns admins,ou=group,dc=example,dc=com
@@ -13,6 +14,7 @@ admin-lv3:
admin-lv2:
display_name: Administrators Level 2
+ description: Basic administrators of the system
LC_admins: True
backends_groups:
ldap:
@@ -23,6 +25,7 @@ admin-lv2:
developpers:
display_name: Developpers
+ description: Developpers of the system
backends_groups:
ldap:
- cn=developpers,ou=group,dc=example,dc=com
@@ -32,6 +35,7 @@ developpers:
users:
display_name: Simple Users
+ description: Basic users of the system
backends_groups:
ldap:
- cn=users,ou=group,dc=example,dc=com
diff --git a/ldapcherry/roles.py b/ldapcherry/roles.py
index cb54073..2c38225 100644
--- a/ldapcherry/roles.py
+++ b/ldapcherry/roles.py
@@ -115,6 +115,9 @@ class Roles:
if not 'display_name' in role:
raise MissingKey('display_name', role, self.role_file)
+ if not 'description' in role:
+ raise MissingKey('description', role, self.role_file)
+
# Backend is mandatory
if not 'backends_groups' in role:
raise MissingKey('backends_groups', role, self.role_file)
diff --git a/resources/templates/roles.tmpl b/resources/templates/roles.tmpl
index 13a6158..dba9b25 100644
--- a/resources/templates/roles.tmpl
+++ b/resources/templates/roles.tmpl
@@ -4,6 +4,9 @@
|
Role
|
+
+ Description
+ |
Parent roles
|
@@ -18,6 +21,9 @@
${roles[role]['display_name']}
|
+
+ ${roles[role]['description']}
+ |
<%
sep = ', '
|