public
/
paris-container
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Remove filters, rather than specifying an ldap filter

This commit is contained in:
niten 2024-06-05 13:28:45 -07:00
parent 54d8c7d49d
commit bb84ade958
1 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
paris-container.nix
View File

@ -35,6 +35,18 @@ in {
default = [ ]; default = [ ];
}; };
kerberos = mkOption {
type = nullOr (submodule {
options = {
keytab = mkOption {
type = str;
description = "Location of Paris keytab.";
};
};
});
default = null;
};
ldap = { ldap = {
image = mkOption { image = mkOption {
type = str; type = str;
@ -266,11 +278,7 @@ in {
pam = { reconnection_retries = 3; }; pam = { reconnection_retries = 3; };
nss = { nss.reconnection_retries = 3;
filter_groups = "root";
filter_users = "root";
reconnection_retries = 3;
};
"domain/${cfg.ldap.domain}" = { "domain/${cfg.ldap.domain}" = {
cache_credentials = true; cache_credentials = true;