summaryrefslogtreecommitdiff
path: root/conf/templates/slapd.conf.template.in
diff options
context:
space:
mode:
authorSteffen Hansen <steffen@kdab.com>2005-09-13 14:38:22 (GMT)
committerSteffen Hansen <steffen@kdab.com>2005-09-13 14:38:22 (GMT)
commitbc9dfdd854f8022b971a6c04c26b2d8c5b0f6f77 (patch)
tree83409442b7b183e464d9c9e227ed1e4d1a751637 /conf/templates/slapd.conf.template.in
parent9f015319ee5221b7281dbe6adf262fe664e3056b (diff)
downloadkolab-conf-bc9dfdd854f8022b971a6c04c26b2d8c5b0f6f77.tar.gz
kolabd autoconfiscated!
Diffstat (limited to 'conf/templates/slapd.conf.template.in')
-rw-r--r--conf/templates/slapd.conf.template.in178
1 files changed, 178 insertions, 0 deletions
diff --git a/conf/templates/slapd.conf.template.in b/conf/templates/slapd.conf.template.in
new file mode 100644
index 0000000..6e1b63c
--- /dev/null
+++ b/conf/templates/slapd.conf.template.in
@@ -0,0 +1,178 @@
+KOLAB_META_START
+TARGET=@ldapserver_confdir@/slapd.conf
+PERMISSIONS=0640
+OWNERSHIP=@ldapserver_usr@:@ldapserver_grp@
+KOLAB_META_END
+# (c) 2003 Tassilo Erlewein <tassilo.erlewein@erfrakon.de>
+# (c) 2003-2005 Martin Konold <martin.konold@erfrakon.de>
+# (c) 2003 Achim Frank <achim.frank@erfrakon.de>
+# This program is Free Software under the GNU General Public License (>=v2).
+# Read the file COPYING that comes with this packages for details.
+
+
+# this file is automatically written by the Kolab config backend and should have the
+# file mode 0640
+
+# manual additions are lost unless made to the template in the Kolab config directory
+# the template is @sysconfdir@/kolab/slapd.conf.template
+
+include @ldapserver_schemadir@/core.schema
+include @ldapserver_schemadir@/cosine.schema
+include @ldapserver_schemadir@/inetorgperson.schema
+include @ldapserver_schemadir@/rfc2739.schema
+include @ldapserver_schemadir@/kolab2.schema
+
+pidfile @ldapserver_pidfile@
+replica-pidfile @ldapserverslurpd_pidfile@
+argsfile @ldapserver_argsfile@
+replogfile @ldapserver_replogfile@
+replicationinterval 5
+
+schemacheck on
+
+TLSCertificateFile @sysconfdir@/kolab/cert.pem
+TLSCertificateKeyFile @sysconfdir@/kolab/key.pem
+
+rootDSE @sysconfdir@/kolab/rootDSE.ldif
+
+defaultsearchbase "@@@base_dn@@@"
+
+require none
+allow bind_v2
+
+loglevel 0
+
+database monitor
+
+database bdb
+cachesize 2000
+checkpoint 512 10
+idlcachesize 10000
+idletimeout 80 # The value can be increased if some clients develop problems.
+ # Please report to kolab-devel@kolab.org if you encounter such a client.
+
+suffix "@@@base_dn@@@"
+directory @ldapserver_dir@
+
+rootdn "@@@bind_dn@@@"
+rootpw "@@@bind_pw_hash@@@"
+
+replica uri=ldap://127.0.0.1:9999
+ binddn="cn=replicator"
+ bindmethod=simple
+ credentials=secret
+
+index objectClass pres,eq
+index uid approx,sub,pres,eq
+index mail approx,sub,pres,eq
+index alias approx,sub,pres,eq
+index cn approx,sub,pres,eq
+index sn approx,sub,pres,eq
+index givenName approx,sub,pres,eq
+index kolabHomeServer pres,eq
+index member pres,eq
+
+include @ldapserver_confdir@/slapd.access
+
+access to dn="@@@base_dn@@@" attrs=children
+ by group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,@@@base_dn@@@" write
+
+access to dn="cn=internal,@@@base_dn@@@" attrs=children
+ by group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,@@@base_dn@@@" write
+
+access to dn.subtree="cn=Monitor"
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by * none stop
+
+access to attr=userPassword
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" =wx
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" =wx
+ by self =wx
+ by anonymous =x
+ by * none stop
+
+access to attr=mail
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+access to attr=alias
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+access to attr=uid
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+access to attr=cyrus-userquota
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by self read stop
+
+access to attr=kolabHomeServer
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+access to attr=kolabHomeMTA
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+access to dn="cn=nobody,@@@base_dn@@@"
+ by anonymous auth stop
+
+access to dn="cn=manager,cn=internal,@@@base_dn@@@"
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by self write
+ by anonymous auth stop
+
+access to dn="cn=admin,cn=internal,@@@base_dn@@@"
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by self write
+ by anonymous auth stop
+
+access to dn="cn=maintainer,cn=internal,@@@base_dn@@@"
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" read
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by self write
+ by anonymous auth stop
+
+access to dn.regex="(.*,)?cn=internal,@@@base_dn@@@"
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by self write
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by anonymous auth stop
+
+access to dn.regex="(.*,)?cn=external,@@@base_dn@@@"
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+access to dn="cn=external,@@@base_dn@@@"
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by * search stop
+
+access to dn="cn=internal,@@@base_dn@@@"
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by * search stop
+
+access to dn="k=kolab,@@@base_dn@@@"
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" read
+ by group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,@@@base_dn@@@" read
+ by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
+ by * none stop
+
+access to *
+ by self write
+ by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+ by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
+ by * read stop
+
+include @ldapserver_confdir@/slapd.replicas