mirror of
https://github.com/stalwartlabs/mail-server.git
synced 2025-12-11 13:56:27 +08:00
58 lines
1.6 KiB
TOML
58 lines
1.6 KiB
TOML
#############################################
|
|
# LDAP Directory configuration
|
|
#############################################
|
|
|
|
[directory."ldap"]
|
|
type = "ldap"
|
|
address = "ldap://localhost:389"
|
|
base-dn = "dc=example,dc=org"
|
|
timeout = "30s"
|
|
disable = true
|
|
|
|
[directory."ldap".bind]
|
|
dn = "cn=serviceuser,ou=svcaccts,dc=example,dc=org"
|
|
secret = "mysecret"
|
|
|
|
[directory."ldap".bind.auth]
|
|
enable = false
|
|
dn = "cn=?,ou=svcaccts,dc=example,dc=org"
|
|
|
|
[directory."ldap".tls]
|
|
enable = false
|
|
allow-invalid-certs = false
|
|
|
|
[directory."ldap".cache]
|
|
entries = 500
|
|
ttl = {positive = '1h', negative = '10m'}
|
|
|
|
[directory."ldap".options]
|
|
catch-all = true
|
|
#catch-all = { map = "(.+)@(.+)$", to = "info@${2}" }
|
|
subaddressing = true
|
|
#subaddressing = { map = "^([^.]+)\.([^.]+)@(.+)$", to = "${2}@${3}" }
|
|
|
|
[directory."ldap".pool]
|
|
max-connections = 10
|
|
|
|
[directory."ldap".pool.timeout]
|
|
create = "30s"
|
|
wait = "30s"
|
|
recycle = "30s"
|
|
|
|
[directory."ldap".filter]
|
|
name = "(&(|(objectClass=posixAccount)(objectClass=posixGroup))(uid=?))"
|
|
email = "(&(|(objectClass=posixAccount)(objectClass=posixGroup))(|(mail=?)(mailAlias=?)(mailList=?)))"
|
|
verify = "(&(|(objectClass=posixAccount)(objectClass=posixGroup))(|(mail=*?*)(mailAlias=*?*)))"
|
|
expand = "(&(|(objectClass=posixAccount)(objectClass=posixGroup))(mailList=?))"
|
|
domains = "(&(|(objectClass=posixAccount)(objectClass=posixGroup))(|(mail=*@?)(mailAlias=*@?)))"
|
|
|
|
[directory."ldap".attributes]
|
|
name = "uid"
|
|
type = "objectClass"
|
|
description = ["principalName", "description"]
|
|
secret = "userPassword"
|
|
groups = ["memberOf", "otherGroups"]
|
|
email = "mail"
|
|
email-alias = "mailAlias"
|
|
quota = "diskQuota"
|
|
|