From abf88552c4107a5735ae51af0cdb00ecc0b7202d Mon Sep 17 00:00:00 2001
From: Lars Kanis <kanis@comcard.de>
Date: Tue, 24 May 2011 11:43:21 +0200
Subject: [PATCH] add comments to sample config

---
 config/sample-config.yaml | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/config/sample-config.yaml b/config/sample-config.yaml
index 8f7879c..4e4e7d4 100644
--- a/config/sample-config.yaml
+++ b/config/sample-config.yaml
@@ -12,6 +12,7 @@ ldap_connection:
 # Search parameters for LDAP users which should be synchronized
 ldap_users:
   base: OU=company,OU=company,DC=company,DC=de
+  # LDAP filter (according to RFC 2254)
   filter: (&(objectClass=person)(objectClass=organizationalPerson)(givenName=*)(sn=*))
   # this attribute is used as PG role name
   name_attribute: sAMAccountName
@@ -34,12 +35,16 @@ pg_connection:
   password:
 
 pg_users:
-  # WHERE-condition to identify LDAP generated users
+  # Filter for identifying LDAP generated users in the database.
+  # It's the WHERE-condition to "SELECT rolname, oid FROM pg_roles"
   filter: rolcanlogin AND NOT rolsuper
+  # Options for CREATE RULE statements
   create_options: LOGIN
 
 pg_groups:
-  # WHERE-condition to identify LDAP generated groups
+  # Filter for identifying LDAP generated groups in the database.
+  # It's the WHERE-condition to "SELECT rolname, oid FROM pg_roles"
   filter: NOT rolcanlogin
+  # Options for CREATE RULE statements
   create_options: NOLOGIN
   grant_options: