Merge branch 'main' of https://gitlab.skynet.ie/compsoc1/skynet/nixos

2023-08-02 16:44:15 +01:00 · 2023-08-02 16:44:15 +01:00 · 599f403149
commit 599f403149
parent 396a5e914b d63f630cad
4 changed files with 29 additions and 26 deletions
--- a/applications/ldap.nix
+++ b/applications/ldap.nix
@ -181,16 +181,19 @@ Gonna use a priper nixos module for this
              olcAccess = [
                /* custom access rules for userPassword attributes */
                ''{0}to attrs=userPassword
+                    by dn.exact="uid=ldap_api,ou=users,dc=skynet,dc=ie" manage
                    by self write
                    by anonymous auth
                    by * none''

                ''{1}to attrs=mail,sshPublicKey,cn,sn,skDiscord
+                    by dn.exact="uid=ldap_api,ou=users,dc=skynet,dc=ie" manage
                    by self write
                    by * read''

                /* allow read on anything else */
                ''{2}to *
+                    by dn.exact="uid=ldap_api,ou=users,dc=skynet,dc=ie" manage
                    by * read''
              ];

@ -224,4 +227,4 @@ Gonna use a priper nixos module for this
      };
    };
  };
-}
+}