LDAP Directory Information Tree
This document describes how the debops.owncloud Ansible role fits in the LDAP directory structure organized by DebOps.
Directory structure
-
cn=Password Reset Agent
roleOccupant
:uid=nextcloud,cn=host.example.org,...
Object Classes and Attributes
Custom objectClasses and attributes from the nextcloud LDAP schema:
objectClass
nextcloudAccount
, attributesnextcloudEnabled
,nextcloudQuota
objectClass
nextcloudGroup
, attributesnextcloudEnabled
Access Control
DebOps LDAP environment includes the 'ldapns' schema which can be used to define access control rules to services. The lists below define the attribute values which will grant access to the service managed by the debops.owncloud role, and specifies other roles with the same access control rules:
objectClass
authorizedServiceObject
, attributeauthorizedService
:all
(all services)nextcloud
owncloud
web:public
LDAP filter definition: owncloud__ldap_login_filter
Parent nodes
Child nodes
There are no child nodes defined for the debops.owncloud Ansible role.