Add regex to allow ldapi:// peercred admin binds in tests

author Nick Porter <nick@portercomputing.co.uk>

Thu, 24 Aug 2023 10:23:36 +0000 (11:23 +0100)

committer Nick Porter <nick@portercomputing.co.uk>

Thu, 24 Aug 2023 10:37:10 +0000 (11:37 +0100)
author Nick Porter <nick@portercomputing.co.uk>
Thu, 24 Aug 2023 10:23:36 +0000 (11:23 +0100)
committer Nick Porter <nick@portercomputing.co.uk>
Thu, 24 Aug 2023 10:37:10 +0000 (11:37 +0100)
diff --git a/scripts/ci/ldap/slapd.conf b/scripts/ci/ldap/slapd.conf

index 14ee54eeb0e98eb6267689a3fc89adbd6ef0646d..31f5d7615237e120cc3919e355a5284b7dce3bf3 100644 (file)
--- a/scripts/ci/ldap/slapd.conf
+++ b/scripts/ci/ldap/slapd.conf
@@ -39,6 +39,12 @@ authz-regexp
    uid=([^,]*),cn=[^,]*,cn=auth
    uid=$1,ou=people,dc=example,dc=com
  
+# Simple mapping of all peercred users to the admin user - to allow for ldapi:// "anonymous" admin connections
+# Definitely testing only as this lets any local user be admin.
+authz-regexp
+  gidNumber=([0-9]*)+uidNumber=([0-9])*,cn=peercred,cn=external,cn=auth
+  cn=admin,dc=example,dc=com
+
  #######################################################################
  # mdb database definitions can be added here, or added by ldapadd
  #######################################################################
author	Nick Porter <nick@portercomputing.co.uk>
	Thu, 24 Aug 2023 10:23:36 +0000 (11:23 +0100)
committer	Nick Porter <nick@portercomputing.co.uk>
	Thu, 24 Aug 2023 10:37:10 +0000 (11:37 +0100)