feat: add docfast.dev to openldap and mail
This commit is contained in:
parent
7763b90d3f
commit
473273146d
2 changed files with 64 additions and 14 deletions
|
|
@ -55,6 +55,10 @@ let
|
||||||
doveadm user *@scana11y.com | while read user; do
|
doveadm user *@scana11y.com | while read user; do
|
||||||
doveadm -v sync -u $user $SERVER
|
doveadm -v sync -u $user $SERVER
|
||||||
done
|
done
|
||||||
|
|
||||||
|
doveadm user *@docfast.dev | while read user; do
|
||||||
|
doveadm -v sync -u $user $SERVER
|
||||||
|
done
|
||||||
'';
|
'';
|
||||||
|
|
||||||
quotaWarning = pkgs.writeShellScriptBin "quota-warning.sh" ''
|
quotaWarning = pkgs.writeShellScriptBin "quota-warning.sh" ''
|
||||||
|
|
|
||||||
|
|
@ -1,11 +1,11 @@
|
||||||
{
|
{ pkgs
|
||||||
pkgs,
|
, config
|
||||||
config,
|
, ...
|
||||||
...
|
|
||||||
}:
|
}:
|
||||||
let
|
let
|
||||||
domain = config.networking.domain;
|
domain = config.networking.domain;
|
||||||
in {
|
in
|
||||||
|
{
|
||||||
services.openldap = {
|
services.openldap = {
|
||||||
enable = true;
|
enable = true;
|
||||||
|
|
||||||
|
|
@ -320,6 +320,52 @@ in {
|
||||||
];
|
];
|
||||||
};
|
};
|
||||||
|
|
||||||
|
"olcDatabase={10}mdb".attrs = {
|
||||||
|
objectClass = [ "olcDatabaseConfig" "olcMdbConfig" ];
|
||||||
|
|
||||||
|
olcDatabase = "{10}mdb";
|
||||||
|
olcDbDirectory = "/var/lib/openldap/data";
|
||||||
|
|
||||||
|
olcSuffix = "dc=docfast,dc=dev";
|
||||||
|
|
||||||
|
olcAccess = [
|
||||||
|
''
|
||||||
|
{0}to attrs=userPassword
|
||||||
|
by self write
|
||||||
|
by anonymous auth
|
||||||
|
by dn="cn=owncloud,ou=system,ou=users,dc=cloonar,dc=com" write
|
||||||
|
by dn="cn=authelia,ou=system,ou=users,dc=cloonar,dc=com" write
|
||||||
|
by dn.subtree="ou=system,ou=users,dc=cloonar,dc=com" read
|
||||||
|
by group.exact="cn=Administrators,ou=groups,dc=cloonar,dc=com" write
|
||||||
|
by * none
|
||||||
|
''
|
||||||
|
''
|
||||||
|
{1}to attrs=pgpPublicKey
|
||||||
|
by self write
|
||||||
|
by anonymous read
|
||||||
|
by dn.subtree="ou=system,ou=users,dc=cloonar,dc=com" read
|
||||||
|
by group.exact="cn=Administrators,ou=groups,dc=cloonar,dc=com" write
|
||||||
|
by * read
|
||||||
|
''
|
||||||
|
''
|
||||||
|
{2}to *
|
||||||
|
by dn.subtree="ou=system,ou=users,dc=cloonar,dc=com" read
|
||||||
|
by group.exact="cn=Administrators,ou=groups,dc=cloonar,dc=com" write
|
||||||
|
by * read
|
||||||
|
''
|
||||||
|
];
|
||||||
|
};
|
||||||
|
"olcOverlay=memberof,olcDatabase={10}mdb".attrs = {
|
||||||
|
objectClass = [ "olcOverlayConfig" "olcMemberOf" ];
|
||||||
|
olcOverlay = "memberof";
|
||||||
|
olcMemberOfRefint = "TRUE";
|
||||||
|
};
|
||||||
|
"olcOverlay=ppolicy,olcDatabase={10}mdb".attrs = {
|
||||||
|
objectClass = [ "olcOverlayConfig" "olcPPolicyConfig" ];
|
||||||
|
olcOverlay = "ppolicy";
|
||||||
|
olcPPolicyHashCleartext = "TRUE";
|
||||||
|
};
|
||||||
|
|
||||||
# "cn=module{0},cn=config" = {
|
# "cn=module{0},cn=config" = {
|
||||||
# attrs = {
|
# attrs = {
|
||||||
# objectClass = "olcModuleList";
|
# objectClass = "olcModuleList";
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue