include ./schema/core.schema
include ./schema/cosine.schema
include ./schema/inetorgperson.schema
+include ./schema/openldap.schema
schemacheck off
pidfile ./test-db/slapd.pid
argsfile ./test-db/slapd.args
+# global ACLs
+access to dn.base="" attr=objectClass by users read
+access to * by * read
+
#######################################################################
# ldbm database definitions
#######################################################################
-backend @BACKEND@
-#ldbm#directory ./test-db
-
database @BACKEND@
cachesize 0
-suffix "o=University of Michigan, c=US"
+suffix "o=University of Michigan,c=US"
directory ./test-db
-rootdn "cn=Manager, o=University of Michigan, c=US"
+rootdn "cn=Manager,o=University of Michigan,c=US"
rootpw secret
-index objectClass eq
-index cn,sn,uid pres,eq,sub
+#ldbm#index objectClass eq
+#ldbm#index cn,sn,uid pres,eq,sub
+#bdb#index objectClass eq
+#bdb#index cn,sn,uid pres,eq,sub
lastmod on
#
by anonymous auth
by self write
-access to dn.children="ou=Alumni Association, ou=People, o=University of Michigan, c=US"
+access to dn.children="ou=Alumni Association,ou=People,o=University of Michigan,c=US"
by dn.regex=".+,o=University of Michigan,c=US" +c continue
- by dn.subtree="o=University of Michigan, c=US" +rs continue
+ by dn.subtree="o=University of Michigan,c=US" +rs continue
by * stop
access to attr=member
by * read
access to filter="objectclass=groupofnames"
- by dn.base="cn=Bjorn Jensen, ou=Information Technology Division, ou=People, o=University of Michigan,c=US" =sc continue
+ by dn.base="cn=Bjorn Jensen,ou=Information Technology Division,ou=People,o=University of Michigan,c=US" =sc continue
by dn="^cn=Bjorn Jensen,ou=Information Technology Division,ou=People,o=University of Michigan,c=US$" +rw stop
by * break
-access to * by * read
+# fall into global ACLs
projects / openldap / blobdiff