modules/dacs/files/per-host/nono.debian.org/dacs.conf

   1 <Configuration xmlns="http://dss.ca/dacs/v1.4">
   2
   3  <Default>
   4    FEDERATION_DOMAIN "debian.org"
   5    FEDERATION_NAME "DEBIANORG"
   6    EVAL ${Conf::JURISDICTION_AUTHSERVER}="sso.debian.org"
   7    LOG_LEVEL "notice"
   8  </Default>
   9  <Jurisdiction uri="nono">
  10    JURISDICTION_NAME "DEBIAN"
  11    ADMIN_IDENTITY "DEBIAN:zobel"
  12  </Jurisdiction>
  13  <Jurisdiction uri="*.debian.org">
  14    JURISDICTION_NAME "DEBIAN"
  15    ADMIN_IDENTITY "DEBIAN:zobel"
  16    <Auth id="guest-apache-htpasswd">
  17      URL "https://sso.debian.org/cgi-bin/dacs/local_apache_authenticate"
  18      STYLE "pass"
  19      CONTROL "sufficient"
  20      OPTION "AUTH_FILE=/etc/apache2/dsa-guest-web-passwords"
  21      OPTION "AUTH_MODULE=mod_auth"
  22    </Auth>
  23
  24    <Auth id="debian-apache-htpasswd">
  25      URL "https://sso.debian.org/cgi-bin/dacs/local_apache_authenticate"
  26      STYLE "pass"
  27      CONTROL "required"
  28      OPTION "AUTH_FILE=/var/lib/misc/thishost/web-passwords"
  29      OPTION "AUTH_MODULE=mod_auth"
  30    </Auth>
  31
  32 <!--
  33    <Auth id="ldap">
  34      URL "https://sso.debian.org/cgi-bin/dacs/local_ldap_authenticate"
  35      STYLE "password"
  36      CONTROL "required"
  37      LDAP_BIND_METHOD "direct"
  38      LDAP_USERNAME_URL* '"ldap://127.0.0.1/uid=" \
  39         . encode(url, ${Args::USERNAME}) . ",ou=users,dc=debian,dc=org"'
  40      LDAP_USERNAME_EXPR* '"${LDAP::uid}"'
  41      LDAP_ROLES_SELECTOR* '"${LDAP::attrname}" eq "supplementaryGid" \
  42        ? strtr(ldap(rdn_attrvalue, \
  43            ldap(dn_index, "${LDAP::attrvalue}", 1)), " ", "_") \
  44        : 0'
  45    </Auth>
  46  -->
  47  </Jurisdiction>
  48 </Configuration>