Skynet/nixos
6
1
Fork 0
Code Issues 43 Pull requests 1 Projects Releases Packages Wiki Activity Actions

[ldap] Add ldap_api access to manage ldap

Browse source
This commit is contained in:
evanc 2023-07-30 20:19:38 +00:00
parent f0bc3eea2e
commit 90deec3940
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
applications/ldap.nix
View file

@ -181,16 +181,19 @@ Gonna use a priper nixos module for this
olcAccess = [ olcAccess = [
/* custom access rules for userPassword attributes */ /* custom access rules for userPassword attributes */
''{0}to attrs=userPassword ''{0}to attrs=userPassword
by dn.exact="uid=ldap_api,ou=users,dc=skynet,dc=ie" manage
by self write by self write
by anonymous auth by anonymous auth
by * none'' by * none''
''{1}to attrs=mail,sshPublicKey,cn,sn,skDiscord ''{1}to attrs=mail,sshPublicKey,cn,sn,skDiscord
by dn.exact="uid=ldap_api,ou=users,dc=skynet,dc=ie" manage
by self write by self write
by * read'' by * read''
/* allow read on anything else */ /* allow read on anything else */
''{2}to * ''{2}to *
by dn.exact="uid=ldap_api,ou=users,dc=skynet,dc=ie" manage
by * read'' by * read''
]; ];