Home | History | Annotate | Line # | Download | only in data
      1 # consumer slapd config -- for testing of replication
      2 # $OpenLDAP$
      3 ## This work is part of OpenLDAP Software <http://www.openldap.org/>.
      4 ##
      5 ## Copyright 1998-2024 The OpenLDAP Foundation.
      6 ## All rights reserved.
      7 ##
      8 ## Redistribution and use in source and binary forms, with or without
      9 ## modification, are permitted only as authorized by the OpenLDAP
     10 ## Public License.
     11 ##
     12 ## A copy of this license is available in the file LICENSE in the
     13 ## top-level directory of the distribution or, alternatively, at
     14 ## <http://www.OpenLDAP.org/license.html>.
     15 
     16 include		@SCHEMADIR@/core.schema
     17 include		@SCHEMADIR@/cosine.schema
     18 include		@SCHEMADIR@/inetorgperson.schema
     19 include		@SCHEMADIR@/openldap.schema
     20 include		@SCHEMADIR@/nis.schema
     21 #
     22 pidfile		@TESTDIR@/slapd.2.pid
     23 argsfile	@TESTDIR@/slapd.2.args
     24 
     25 #mod#modulepath	../servers/slapd/back-@BACKEND@/
     26 #mod#moduleload	back_@BACKEND@.la
     27 #ldapmod#modulepath ../servers/slapd/back-ldap/
     28 #ldapmod#moduleload back_ldap.la
     29 
     30 #ldapyes#overlay		chain
     31 #ldapyes#chain-uri		@URI1@
     32 #ldapyes#chain-idassert-bind	bindmethod=simple binddn="cn=Manager,dc=example,dc=com" credentials=secret mode=self
     33 #ldapmod#overlay		chain
     34 #ldapmod#chain-uri		@URI1@
     35 #ldapmod#chain-idassert-bind	bindmethod=simple binddn="cn=Manager,dc=example,dc=com" credentials=secret mode=self
     36 
     37 #######################################################################
     38 # database definitions
     39 #######################################################################
     40 
     41 access to dn.base="" attrs=children
     42 	by dn.exact="cn=Monitor" write
     43 	by * break
     44 
     45 access to *
     46 	by * read
     47 
     48 database	@BACKEND@
     49 
     50 suffix		"dc=example,dc=com"
     51 rootdn		"cn=consumer,dc=example,dc=com"
     52 rootpw		secret
     53 # HACK: use the RootDN of the monitor database as UpdateDN so ACLs apply
     54 # without the need to write the UpdateDN before starting replication
     55 updatedn	"cn=Monitor"
     56 updateref	@URI1@
     57 #null#bind		on
     58 #~null~#directory	@TESTDIR@/db.2.a
     59 #indexdb#index		objectClass	eq
     60 #indexdb#index		cn,sn,uid	pres,eq,sub
     61 #indexdb#index		entryUUID	pres,eq
     62 
     63 # Need to strip hasSubordinates from internal searches otherwise
     64 # syncrepl will try to delete it, since syncprov is not sending
     65 # it because it's generated
     66 access to dn.subtree="dc=example,dc=com" attrs=hasSubordinates
     67 	by dn.exact="cn=Monitor" none
     68 	by * read
     69 
     70 access to dn.subtree="dc=example,dc=com"
     71 	by dn.exact="cn=Monitor" write
     72 	by * read
     73 
     74 database	monitor
     75 rootdn		"cn=Monitor"
     76 rootpw		monitor
     77