bn8/ldapsaisie
1
0
Fork 0
mirror of https://gitlab.easter-eggs.com/ee/ldapsaisie.git synced 2024-05-19 03:55:27 +02:00
Code Issues Projects Releases Wiki Activity
ldapsaisie/src/conf/config.inc.php
Benjamin Renard e099a27533 Add dynamic groups support (with cache members attributes) 
Add LSaddon dyngroup with feature to handle update static cache members
attributes on users or dyngroup URI changes. The update process could
also be runned using CLI update_dyngroups_members_cache command
(allowing cron task configuration).

LSexample also evoluate to add example of dynamic groups implementation.
On this occasion, the restore_lsexample script was completely rewrited.
2021-07-21 19:42:22 +02:00

272 lines
8.5 KiB
PHP
Raw Blame History

<?php
/*******************************************************************************
* Copyright (C) 2007 Easter-eggs
* https://ldapsaisie.org
*
* Author: See AUTHORS file in top-level directory.
*
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License version 2
* as published by the Free Software Foundation.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
******************************************************************************/
// Configuration LDAP Saisie :
$GLOBALS['LSconfig'] = array(
'NetLDAP2' => '/usr/share/php/Net/LDAP2.php',
'Smarty' => '/usr/share/php/smarty3/Smarty.class.php',
'ConsoleTable' => '/usr/share/php/Console/Table.php',
'public_root_url' => '/',
'lang' => 'fr_FR',
'encoding' => 'UTF8',
'cacheLSprofiles' => true,
'cacheSubDn' => true,
'cacheSearch' => true,
'globalSearch' => true,
'keepLSsessionActive' => true,
'ldap_servers' => array (
array (
'name' => 'LSexample',
'ldap_config'=> array(
'host' => '127.0.0.1',
'port' => 389,
'version' => 3,
'starttls' => false,
'binddn' => 'uid=ldapsaisie,ou=sysaccounts,o=ls',
'bindpw' => 'toto',
'basedn' => 'o=ls',
'options' => array(),
'filter' => '(objectClass=*)',
'scope' => 'sub',
),
'LSauth' => array (
//'method' => 'basic', // Auth method : basic(default), HTTP, CAS or anonymous
//'api_method' => 'HTTP', // Auth method that must support API mode : HTTP(default) or anonymous
'LSobjects' => array(
'LSpeople' => array(
'filter' => '(|(uid=%{user})(mail=%{user}))',
'password_attribute' => 'userPassword',
'api_access' => false,
),
'LSsysaccount' => array(
'api_access' => true,
)
),
//'allow_multi_match' => false, // Allow username multiple match (default: false)
),
'LSprofiles' => array (
'admin' => array (
'label' => 'Administrator',
'o=ls' => array (
'uid=admin,ou=people,o=ls' => NULL,
'uid=eeggs,ou=people,o=ls' => NULL,
),
'ou=people,o=ls' => array (
'cn=adminldap,ou=groups,o=ls' => array (
'attr' => 'uniqueMember',
'LSobject' => 'LSgroup',
),
),
),
'godfather' => array (
'label' => 'Godfather',
'LSobjects' => array (
'LSpeople' => array (
'attr' => 'lsGodfatherDn',
'attr_value' => '%{dn}',
'basedn' => 'ou=people,o=ls',
),
'LSgroup' => array (
'filter' => '(lsGodfatherDn=%{dn})',
),
),
),
),
'cacheLSprofiles' => true,
'cacheSearch' => true,
'LSaccess' => array(
'LSpeople',
'LSgroup',
'LSdyngroup',
'LSsysaccount',
'pwdPolicy',
),
'recoverPassword' => array(
'mailAttr' => 'mail',
'recoveryHashAttr' => 'lsRecoveryHash',
'recoveryEmailSender' => 'noreply-recover@ls.com',
'recoveryHashMail' => array(
'subject' => 'LSexample : Recovering your password.',
'msg' => "To proceed password recovery procedure, please follow that link:\n%{url}",
),
'newPasswordMail' => array(
'subject' => 'LSexample : Your new credentials.',
'msg' => "Your new password : %{mdp}",
),
),
'emailSender' => 'noreply@ls.com',
),
array (
'name' => 'LSexample - multi-company',
'ldap_config'=> array(
'host' => '127.0.0.1',
'port' => 389,
'version' => 3,
'starttls' => false,
'binddn' => 'uid=ldapsaisie,ou=sysaccounts,o=ls',
'bindpw' => 'toto',
'basedn' => 'o=ls',
'options' => array(),
'filter' => '(objectClass=*)',
'scope' => 'sub',
),
'LSauth' => array (
'LSobjects' => array('LSpeople'),
),
'LSprofiles' => array(
'admin' => array (
'o=ls' => array (
'uid=eeggs,ou=people,o=ls' => NULL,
'cn=adminldap,ou=groups,o=ls' => array (
'attr' => 'uniqueMember',
'LSobject' => 'LSgroup',
),
),
),
'admingroup' => array (
'ou=company1,ou=companies,o=ls' => array (
'uid=user1,ou=people,ou=company1,ou=companies,o=ls' => NULL,
),
),
),
'subDnLabel' => 'Company',
'subDn' => array(
'== All ==' => array(
'dn' => 'o=ls',
'LSobjects' => array(
'LSpeople',
'LSgroup',
'LScompany',
'LSsysaccount',
),
),
'LSobject' => array(
'LScompany' => array(
'LSobjects' => array(
'LSpeople',
'LSgroup',
),
),
),
),
'cacheLSprofiles' => true,
'cacheSearch' => true,
'globalSearch' => true,
'recoverPassword' => array(
'mailAttr' => 'mail',
'recoveryHashAttr' => 'lsRecoveryHash',
'recoveryEmailSender' => 'noreply-recover@lsexample.net',
'recoveryHashMail' => array(
'subject' => 'LSexample : Recovering your password.',
'msg' => "To proceed password recovery procedure, please follow that link:\n%{url}",
),
'newPasswordMail' => array(
'subject' => 'LSexample : Your new credentials.',
'msg' => "Your new password : %{mdp}",
),
),
'emailSender' => 'noreply@lsexample.net',
),
),
);
// Interface
// Theme Black
//define('LS_THEME','black');
//define('LS_TEMPLATES_DIR', 'templates/default');
// Theme Default
define('LS_THEME','default');
define('LS_TEMPLATES_DIR', 'templates');
define('LS_IMAGES_DIR', 'images');
define('LS_CSS_DIR', 'css');
//Debug
define('LSdebug',false);
// Logging
$GLOBALS['LSlog']['handlers'] = array (
array (
'handler' => 'file',
'path' => 'tmp/LS.log',
//'level' => 'DEBUG',
//'enabled' => false, // Uncomment to disable this handler
// Filter on specific loggers
//'loggers' => array('LSurl', 'LSlang'),
'excluded_loggers' => array('generate_lang_file', 'generate_ldapsaisie_pot'),
// Default formats
//'format' => '%{requesturi} - %{remoteaddr} - %{ldapservername} - %{authuser} - %{level} - %{message}',
//'cli_format' => '%{clibinpath} - %{level} - %{message}',
//'datetime_prefix' => true, // Prefix message with datetime ?
//'datetime_format' => 'Y/m/d H:i:s', // Datetime prefix format (see php date() function)
),
array (
'handler' => 'email', // Email handler (each logged message generated an email)
'level' => 'FATAL',
'recipient' => 'root@localhost', // Email recipient
),
/*
array (
'handler' => 'syslog', // Syslog handler
//'priority' => 'WARNING', // Force priority : EMERG, ALERT, CRITICAL, ERROR, WARNING, NOTICE, INFO, DEBUG
),
*/
/*
array (
'handler' => 'system', // System logging (using PHP error_log)
'level' => 'ERROR',
),
*/
);
$GLOBALS['LSlog']['loggers'] = array (
/**
* Loggers permit to define different log parameters for specific components
* of LdapSaisie (a class, an addon, ...). You could :
* - Enabled/disabled logs for this component with 'enabled' parameter
* - Set a specific log level for this component with 'enabled' parameter
**/
/*
'LSurl' => array (
'level' => 'DEBUG',
),
'LSldap' => array (
'level' => 'DEBUG',
),
'LSlang' => array (
'enabled' => false,
),
*/
);
$GLOBALS['LSlog']['level'] = 'INFO'; // TRACE, DEBUG, INFO, WARNING, ERROR, FATAL
$GLOBALS['LSlog']['enable'] = true;
define('NB_LSOBJECT_LIST',30);
define('NB_LSOBJECT_LIST_SELECT',20);
$GLOBALS['NB_LSOBJECT_LIST_CHOICES'] = array(30, 60, 100);
define('MAX_SEND_FILE_SIZE',2000000);
// Default Javascript & CSS to include on all pages
$GLOBALS['defaultJSscripts']=array();
$GLOBALS['defaultCSSfiles']=array('light-blue.css');
Reference in a new issue View git blame Copy permalink