fruworg/pgls
Archived
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
This repository has been archived on 2023-12-11. You can view files and clone it, but cannot push or open issues or pull requests.
66225ad5f5
pgls/config/krb5-cfg.yml
Руслан e7082557a0
Create krb5-cfg.yml
2023-08-04 19:34:57 +06:00

36 lines
872 B
YAML
Raw Blame History

ldap_connection:
host: <dc>
port: 636
auth:
method: :gssapi
hostname: <dc.doma.in>
encryption:
method: :simple_tls
ldap_users:
base: DC=<doma>,DC=<in>
filter: CN=Users,DC=<doma>,DC=<in>
name_attribute: sAMAccountName
uppercase_name: true
ldap_groups:
base: DC=<doma>,DC=<in>
filter: fruw.org
name_attribute: cn
uppercase_name: true
member_attribute: "memberuid"
pg_connection:
host: <db.doma.in>
dbname: postgres
user: <db-username>
pg_users:
filter: oid IN (SELECT pam.member FROM pg_auth_members pam JOIN pg_roles pr ON pr.oid=pam.roleid WHERE pr.rolname='ldap_users')
create_options: LOGIN IN ROLE ldap_users
pg_groups:
filter: oid IN (SELECT pam.member FROM pg_auth_members pam JOIN pg_roles pr ON pr.oid=pam.roleid WHERE pr.rolname='ldap_groups')
create_options: NOLOGIN IN ROLE ldap_groups
grant_options:
Reference in New Issue View Git Blame Copy Permalink