/[soft]/identity/CatDap/branches/live/catdap.yml
ViewVC logotype

Contents of /identity/CatDap/branches/live/catdap.yml

Parent Directory Parent Directory | Revision Log Revision Log


Revision 16 - (show annotations) (download)
Fri Oct 29 01:08:51 2010 UTC (13 years, 5 months ago) by misc
Original Path: identity/CatDap/trunk/catdap.yml
File size: 4495 byte(s)
- fix small typo in example config file

1 # This is the default configuration for CatDap. You should not need to
2 # modify it, unless you actually want to fix some default behaviour
3 # that is configured below
4 #
5 # For site-specific configuration, copy this file (catdap.yml) to
6 # have a _local suffix (catdap_local.yml) and make your changes there.
7 # Note that you only need to keep configuration sections that differ,
8 # the rest will be inherited
9
10 name: CatDap
11 default_view: TT
12
13 Model::Proxy:
14 base: ou=People,dc=mageia,dc=org
15 dn: cn=catdap,ou=System Accounts,dc=mageia,dc=org
16 password: FIXME
17 host: ldap.mageia.org
18 start_tls: 1
19
20 # dn and password should not be required here, we rebind with credentials
21 # from the authenticated user using Model::LDAP::FromAuthentication
22 Model::User:
23 base: ou=People,dc=mageia,dc=org
24 host: ldap.mageia.org
25 start_tls: 1
26
27 authentication:
28 default_realm: ldap
29 realms:
30 ldap:
31 credential:
32 class: Password
33 password_field: password
34 password_type: self_check
35 store:
36 class: LDAP
37 ldap_server: 'ldap.mageia.org'
38 start_tls: 1
39 binddn: cn=catdap,ou=System Accounts,dc=mageai,dc=org
40 bindpw: FIXME
41 user_basedn: "ou=people,dc=mageia,dc=org"
42 user_filter: '(&(objectClass=inetOrgPerson)(uid=%s))'
43 user_scope: 'one'
44 user_field: 'uid'
45 use_roles: 1
46 role_basedn: 'ou=group,dc=mageia,dc=org'
47 role_scope: 'one'
48 role_field: 'cn'
49 role_value: 'uid'
50
51 Controller::User:
52 # Attributes that the user can edit. Attributes present but not listed here
53 # will be show (if not in skip_attrs), but the form will not allow editing.
54 # Note that the actual access contols should be implemented on the LDAP side,
55 # that is where they belong, or you are being inconsistent if users have other
56 # means to access LDAP
57 editable_attrs:
58 - cn
59 - sn
60 - givenName
61 - mail
62 - mobile
63 - roomNumber
64 - secretary
65 - mailForwardingAddress
66
67 # Currently not used, we only respect editable_attrs
68 uneditable_attrs:
69 - uid
70 # - uidNumber
71 # - gidNumber
72 - homeDirectory
73 - host
74 - manager
75 - krb5PrincipalName
76 # List of attributes which are not displayed at all in the user view
77 skip_attrs:
78 - objectClass
79 - krb5Key
80 - sambaMungedDial
81 - sambaPasswordHistory
82 - userPassword
83 - sambaLMPassword
84 - sambaNTPassword
85 - sambaPwdMustChange
86 - sambaSID
87 - sambaPrimaryGroupSID
88 - sambaAcctFlags
89 - sambaPwdCanChange
90 - sambaPwdLastSet
91 - sambaKickOffTime
92 - sambaUserWorkstations
93 - sambaLogonTime
94 - krb5KeyVersionNumber
95 - krb5PasswordEnd
96 - krb5MaxLife
97 - krb5MaxRenew
98 - krb5KDCFlags
99 - shadowLastChange
100 - shadowWarning
101 - shadowMax
102 - shadowMin
103 - shadowInactive
104 - shadowExpire
105 - shadowFlag
106
107 Plugin::Captcha:
108 new:
109 gd_font: giant
110 width: 100
111 height: 40
112 lines: 7
113
114 create:
115 - normal
116 - rect
117
118 particle:
119 - 100
120
121 gd_font: giant
122
123 Plugin::Session:
124 expires: 600
125

  ViewVC Help
Powered by ViewVC 1.1.30