dataset/seed/openldap/templates/openldap.yml
2023-07-31 15:30:32 +02:00

50 lines
2.2 KiB
YAML

{% set username = "rougail_test@silique.fr" %}
{% set username_family = "rougail_test@gnunux.info" %}
{% set name_family = 'gnunux' %}
{% set familydn = ldap_base_dn|calc_ldapclient_base_dn(family_name=name_family) %}
{% set userdn = 'cn=' + username + ',' + ldap_base_dn|calc_ldapclient_base_dn %}
{% set userfamilydn = 'cn=' + username_family + ',' + familydn %}
address: {{ general.network.interface_0.ip_eth0 }}
admin_dn: {{ ldap_user }}
admin_password: {{ general.ldap.ldap_user_password }}
user_dn: {{ userdn }}
user_password: {{ username|get_password(server_name='test', description='test', type="cleartext", hide=hide_secret, temporary=True) }}
user_family_dn: {{ userfamilydn }}
user_family_password: {{ username_family|get_password(server_name='test', description="test", type="cleartext", hide=hide_secret, temporary=True) }}
base_account_dn: {{ ldap_account_dn }}
base_user_dn: {{ ldap_user_dn }}
base_family_dn: {{ familydn }}
base_group_dn: {{ ldap_group_dn }}
{% for idx in range(3) %}
{% set name = 'remote_test' + idx|string %}
remote{{ idx }}: cn={{ name }},{{ ldap_base_dn }}
remote_password{{ idx }}: {{ name|get_password(server_name=domain_name_eth0, description="remote account", type="cleartext", hide=hide_secret, temporary=True) }}
{% endfor %}
users:
{{ username }}: {{ userdn }}
{{ username_family }}: {{ userfamilydn }}
{% for user in accounts.users.ldap_user_mail %}
{{ user }}: cn={{ user }},{{ ldap_user_dn }}
{% endfor %}
{% for family in accounts.families %}
{% set families = ldap_base_dn|calc_ldapclient_base_dn(family) %}
{% for user in accounts['family_' + family]['users_' + family]['ldap_user_mail_' + family] %}
{{ user }}: cn={{ user }},{{ families }}
{% endfor %}
{% endfor %}
groups:
users:
- {{ userdn }}
{% for user in accounts.users.ldap_user_mail %}
- cn={{ user }},{{ ldap_user_dn }}
{% endfor %}
{% for family in accounts.families %}
{% set families = ldap_base_dn|calc_ldapclient_base_dn(family) %}
{{ family }}:
{% if family == name_family %}
- {{ userfamilydn }}
{% endif %}
{%- for user in accounts['family_' + family]['users_' + family]['ldap_user_mail_' + family] %}
- cn={{ user }},{{ families }}
{% endfor %}
{% endfor %}