Mise à jour du patch pour 2.7.1

This commit is contained in:
Philippe Caseiro 2020-03-24 09:17:57 +01:00
parent 232c701946
commit fd81b39b7f
2 changed files with 12 additions and 28 deletions

View File

@ -1,35 +1,26 @@
--- distrib/slapd.conf 2017-11-14 15:48:53.000000000 +0100 --- distrib/slapd.conf 2019-06-04 11:18:04.000000000 +0200
+++ modif/slapd.conf 2018-03-26 17:01:41.136558718 +0200 +++ modif/slapd.conf 2020-03-24 09:10:44.724586266 +0100
@@ -23,6 +23,8 @@ @@ -23,6 +23,7 @@
%elif %%ldap_schema == 'zephir' %elif %%ldap_schema == 'zephir'
include /etc/ldap/schema/openldap.schema include /etc/ldap/schema/openldap.schema
%end if %end if
+include /etc/ldap/schema/cadoles.schema +include /etc/ldap/schema/cadoles.schema
+
## Support du TLS ## Support du TLS
TLSCertificateFile %%server_cert TLSCertificateFile /etc/ldap/ssl/certs/openldap.crt
@@ -43,6 +45,9 @@ @@ -46,6 +47,7 @@
# Where the dynamically loaded modules are stored
modulepath /usr/lib/ldap
moduleload back_bdb
+# moduleload dynlist
+moduleload memberof
+
%if %%ldap_replication == 'oui' or %%ldap_replication_client == 'oui' %if %%ldap_replication == 'oui' or %%ldap_replication_client == 'oui'
moduleload syncprov moduleload syncprov
%end if %end if
@@ -96,6 +101,13 @@ +moduleload memberof
# Mode 700 recommended.
directory /var/lib/ldap
+#overlay dynlist # Sample security restrictions
+#dynlist-attrset cadolesPerson labeledURI cadolesMemberOf # Require integrity protection (prevent hijacking)
@@ -219,3 +221,7 @@
%if %%ldap_replication_client == 'oui'
include /etc/ldap/replication.conf
%end if
+ +
+overlay memberof +overlay memberof
+memberof-group-oc cadolesGroup +memberof-group-oc cadolesGroup
+memberof-member-ad cadolesMember +memberof-member-ad cadolesMember
+
# Indices to maintain
index objectClass eq
index uid,cn,sn eq,subinitial

View File

@ -64,10 +64,3 @@ mail: %%system_mail_to
siren: %%cadolesldap_niveau01siren siren: %%cadolesldap_niveau01siren
userpassword: %%pyeole.ssha.ssha_encode(%%cadolesldap_pwdadmin) userpassword: %%pyeole.ssha.ssha_encode(%%cadolesldap_pwdadmin)
niveau01: %%cadolesldap_niveau01name niveau01: %%cadolesldap_niveau01name