Files @ a6633bcc83d1
Branch filter:

Location: majic-ansible-roles/testsite/group_vars/xmpp.yml

a6633bcc83d1 1.1 KiB text/x-yaml Show Annotation Show as Raw Download as Raw
branko
MAR-13: Added a hack to restart the slapd server once the group for OpenLDAP has been changed (otherwise the user can't read the TLS key, and error happens). Fixed some service resources to be explicitly enabled.
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
---

ldap_client_config:
  - comment: Set the base DN
    option: BASE
    value: dc=example,dc=com
  - comment: Set the default URI
    option: URI
    value: ldapi:///
  - comment: Set the default bind DN
    option: BINDDN
    value: cn=admin,dc=example,dc=com
  - comment: Set the LDAP TLS truststore
    option: TLS_CACERT
    value: /etc/ssl/certs/example_ca_chain.pem

local_mail_aliases:
  root: "root john.doe@example.com"

smtp_relay_host: mail.example.com

smtp_relay_truststore: /etc/ssl/certs/example_ca_chain.pem

prosody_administrators:
  - john.doe@example.com

prosody_tls_key: "{{ inventory_dir }}/tls/xmpp.example.com_xmpp.key"

prosody_tls_certificate: "{{ inventory_dir }}/tls/xmpp.example.com_xmpp.pem"

prosody_domains:
  - example.com

prosody_ldap_server: ldap.example.com

prosody_ldap_bind_dn: cn=xmpp,ou=services,dc=example,dc=com

prosody_ldap_password: xmpp

prosody_ldap_filter: '(&(memberOf=cn=xmpp,ou=groups,dc=example,dc=com)(mail=$user@$host))'

prosody_ldap_scope: "onelevel"

prosody_ldap_tls: "true"

prosody_ldap_base: "ou=people,dc=example,dc=com"
This site is powered by Kallithea 0.7.0, which is © 2010–2024 by various authors & licensed under GPLv3.