---
ldap_connection:
  host: localhost
  port: 1389
#  auth:
#    method: :simple
#    username: dc=example,dc=com
#    password:

ldap_users:
  base: dc=example,dc=com
  filter: (&(cn=*)(sAMAccountName=*))
  name_attribute: sAMAccountName

ldap_groups:
  base: dc=example,dc=com
  filter: (member=*)
  name_attribute: cn
  member_attribute: member

pg_connection:
  host: localhost
  dbname: postgres

pg_users:
  # WHERE-condition to identify LDAP generated users
#  filter: rolcanlogin AND oid IN (SELECT pam.member FROM pg_auth_members pam JOIN pg_roles pr ON pr.oid=pam.roleid WHERE pr.rolname='edv')
  filter: rolcanlogin AND NOT rolsuper
  create_options: LOGIN

pg_groups:
  # WHERE-condition to identify LDAP generated groups
#  filter: NOT rolcanlogin AND rolname='edv'
  filter: NOT rolcanlogin
  create_options: NOLOGIN
  grant_options: