1 <Configuration xmlns="http://dss.ca/dacs/v1.4">
4 FEDERATION_DOMAIN "debian.org"
5 FEDERATION_NAME "DEBIANORG"
6 EVAL ${Conf::JURISDICTION_AUTHSERVER}="sso.debian.org"
9 <Jurisdiction uri="nono">
10 JURISDICTION_NAME "DEBIAN"
11 ADMIN_IDENTITY "DEBIAN:zobel"
13 <Jurisdiction uri="*.debian.org">
14 JURISDICTION_NAME "DEBIAN"
15 ADMIN_IDENTITY "DEBIAN:zobel"
16 <Auth id="guest-apache-htpasswd">
17 URL "https://sso.debian.org/cgi-bin/dacs/local_apache_authenticate"
20 OPTION "AUTH_FILE=/etc/apache2/dsa-guest-web-passwords"
21 OPTION "AUTH_MODULE=mod_auth"
24 <Auth id="debian-apache-htpasswd">
25 URL "https://sso.debian.org/cgi-bin/dacs/local_apache_authenticate"
28 OPTION "AUTH_FILE=/var/lib/misc/thishost/web-passwords"
29 OPTION "AUTH_MODULE=mod_auth"
34 URL "https://sso.debian.org/cgi-bin/dacs/local_ldap_authenticate"
37 LDAP_BIND_METHOD "direct"
38 LDAP_USERNAME_URL* '"ldap://127.0.0.1/uid=" \
39 . encode(url, ${Args::USERNAME}) . ",ou=users,dc=debian,dc=org"'
40 LDAP_USERNAME_EXPR* '"${LDAP::uid}"'
41 LDAP_ROLES_SELECTOR* '"${LDAP::attrname}" eq "supplementaryGid" \
42 ? strtr(ldap(rdn_attrvalue, \
43 ldap(dn_index, "${LDAP::attrvalue}", 1)), " ", "_") \