summaryrefslogtreecommitdiffstats
path: root/tests/data/slapd-syncrepl-consumer-persist-ldap.conf
blob: fbed8aa4a17645e0f59312cd3d8bfa50b0589861 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
# consumer slapd config -- for testing of SYNC replication with intermediate proxy
# $OpenLDAP$
## This work is part of OpenLDAP Software <http://www.openldap.org/>.
##
## Copyright 1998-2024 The OpenLDAP Foundation.
## All rights reserved.
##
## Redistribution and use in source and binary forms, with or without
## modification, are permitted only as authorized by the OpenLDAP
## Public License.
##
## A copy of this license is available in the file LICENSE in the
## top-level directory of the distribution or, alternatively, at
## <http://www.OpenLDAP.org/license.html>.

include		@SCHEMADIR@/core.schema
include		@SCHEMADIR@/cosine.schema
include		@SCHEMADIR@/inetorgperson.schema
include		@SCHEMADIR@/openldap.schema
include		@SCHEMADIR@/nis.schema
#
pidfile		@TESTDIR@/slapd.3.pid
argsfile	@TESTDIR@/slapd.3.args

#mod#modulepath	../servers/slapd/back-@BACKEND@/
#mod#moduleload	back_@BACKEND@.la
#syncprovmod#modulepath ../servers/slapd/overlays/
#syncprovmod#moduleload syncprov.la
#ldapmod#modulepath ../servers/slapd/back-ldap/
#ldapmod#moduleload back_ldap.la

# We don't need any access to this DSA
restrict	all

#######################################################################
# consumer proxy database definitions
#######################################################################

database	ldap
suffix		"dc=example,dc=com"
rootdn		"cn=Whoever"
uri		@URI2@

# ITS#4632: syncprov now wants this on (ITS#4613); however, since checks 
# are in place to prevent lastmod operational attrs to be added twice,
# this should cause no harm
lastmod		on

# HACK: use the RootDN of the monitor database as UpdateDN so ACLs apply
# without the need to write the UpdateDN before starting replication
acl-bind	bindmethod=simple
		binddn="cn=Monitor"
		credentials=monitor

# Don't change syncrepl spec yet

# HACK: use the RootDN of the monitor database as UpdateDN so ACLs apply
# without the need to write the UpdateDN before starting replication
syncrepl	rid=1
		provider=@URI1@
		binddn="cn=Manager,dc=example,dc=com"
		bindmethod=simple
		credentials=secret
		searchbase="dc=example,dc=com"
		filter="(objectClass=*)"
		attrs="*,structuralObjectClass,entryUUID,entryCSN,creatorsName,createTimestamp,modifiersName,modifyTimestamp"
		schemachecking=off
		scope=sub
		type=refreshAndPersist
		retry="3 10 5 +"

overlay		syncprov

database	monitor