From 7d27e56050c89c8843611274691e9a0a38bf1bd6 Mon Sep 17 00:00:00 2001
From: Someone <someone@somenet.org>
Date: Fri, 28 Mar 2025 01:24:38 +0100
Subject: [PATCH] roles/server/ldap-server/files

---
 .../ldap-server/files/default/slapd.conf      | 46 +++++++++++++++++++
 1 file changed, 46 insertions(+)
 create mode 100644 roles/server/ldap-server/files/default/slapd.conf

diff --git a/roles/server/ldap-server/files/default/slapd.conf b/roles/server/ldap-server/files/default/slapd.conf
new file mode 100644
index 0000000..5f54474
--- /dev/null
+++ b/roles/server/ldap-server/files/default/slapd.conf
@@ -0,0 +1,46 @@
+#
+################################################
+### Managed by someone's ansible provisioner ###
+################################################
+# Part of: https://git.somenet.org/root/pub/somesible.git
+# 2017-2025 by someone <someone@somenet.org>
+#
+# /etc/ldap/slapd.d is symlinked to /dev/null
+#
+
+pidfile  /var/run/openldap/slapd.pid
+#loglevel stats
+
+moduleload back_mdb
+moduleload memberof
+
+include /etc/ldap/schema/core.schema
+include /etc/ldap/schema/cosine.schema
+include /etc/ldap/schema/inetorgperson.schema
+include /etc/ldap/schema/nis.schema
+
+
+# will this ever be usable?
+database config
+#access to * by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=extern al,cn=auth" manage by * none
+#rootdn cn=root,cn=config
+#rootpw CHANGEME
+
+
+database mdb
+suffix dc=CHANGEME
+directory /var/lib/ldap/
+
+access to attrs=userPassword by self write by anonymous auth by * none
+access to attrs=shadowLastChange by self write by * read
+access to * by * read
+
+index objectClass eq
+index cn,uid eq
+index uidNumber,gidNumber eq
+index member,memberUid eq
+
+rootdn cn=root,dc=CHANGEME
+rootpw CHANGEME
+
+overlay memberof
-- 
2.43.0