postfix/templates/ldap_aliases.conf

<%-
# TODO I am sure that a more elegant way could be find
query_string = ''
aliases_group.each do |g|  
    query_string += '(memberOf=cn=' + g + ',ou=Group,' + dc_suffix + ')'
end 

ldap = ldap_servers.map { |l| "ldaps://#{l}:636" }
-%>
server_host = <%= ldap.join(' ') %>
search_base = <%= dc_suffix %>
query_filter = (&(uid=%u)(|<%= query_string %>))
result_attribute = mail
bind = yes
bind_dn = cn=postfix-<%= hostname %>,ou=System Accounts,<%= dc_suffix %>
bind_pw = <%= ldap_password %>
# postfix complain on url 
# warning: dict_ldap_open: URL scheme ldaps requires protocol version 3
version = 3 
domain = <%= domain %>
1	<%-
2	# TODO I am sure that a more elegant way could be find
3	query_string = ''
4	aliases_group.each do \|g\|
5	query_string += '(memberOf=cn=' + g + ',ou=Group,' + dc_suffix + ')'
6	end
7
8	ldap = ldap_servers.map { \|l\| "ldaps://#{l}:636" }
9	-%>
10	server_host = <%= ldap.join(' ') %>
11	search_base = <%= dc_suffix %>
12	query_filter = (&(uid=%u)(\|<%= query_string %>))
13	result_attribute = mail
14	bind = yes
15	bind_dn = cn=postfix-<%= hostname %>,ou=System Accounts,<%= dc_suffix %>
16	bind_pw = <%= ldap_password %>
17	# postfix complain on url
18	# warning: dict_ldap_open: URL scheme ldaps requires protocol version 3
19	version = 3
20	domain = <%= domain %>