# Utilisateurs
# Mot de passe pour Cyrus doit correspndre au MdP du fichier cyr_adduser.pl

dn: cn=Admin Cyrus,dc=stage-ge,dc=org
uid: cyrus
cn: Admin Cyrus
displayName: Admin Cyrus
givenName: Admin
sn: Cyrus
objectClass: inetOrgPerson
userPassword: {{ admincyrus_passwd.stdout }} 

dn: cn=Mail Admin,ou=People,dc=stage-ge,dc=org
uid: mailadmin
cn: Mail Admin
displayName: Mail Admin
givenName: Mail
sn: Admin
objectClass: posixAccount
objectClass: inetOrgPerson
uidNumber: 3001
gidNumber: {{ ldapunix_group_id }}
userPassword: {{ mailadmin_passwd.stdout }}
mail: mailadmin@stage-ge.org
homeDirectory: /home/mailadmin

dn: cn=Admin LDAP,dc=stage-ge,dc=org
uid: adminldap
cn: Admin LDAP
displayName: Admin LDAP
givenName: Admin
sn: LDAP
objectClass: inetOrgPerson
userPassword: {{ ldapadmin_passwd.stdout }} 

dn: cn=Access LDAP,dc=stage-ge,dc=org
uid: accessldap
cn: Access LDAP
displayName: Access LDAP
givenName: Access
sn: LDAP
objectClass: inetOrgPerson
userPassword: {{ ldapaccess_passwd.stdout }}

{% for key, value in stagiaires.items() %}
dn: cn={{ value.name }} {{ value.firstname }},ou=people,dc=stage-ge,dc=org
uid: {{ key }}
cn: {{ value.name }} {{ value.firstname }}
displayName: {{ value.name }} {{ value.firstname }}
givenName: {{ value.name }}
sn: {{ value.firstname }}
objectClass: posixAccount
objectClass: inetOrgPerson
uidNumber: {{ value.uid}}
gidNumber: {{ ldapunix_group_id }}
userPassword: {{ ldap_passwd.stdout }}
mail: {{ value.mail }}
homeDirectory: /home/{{ key }}

{% endfor %}

#dn: cn=Stagiaire Un,ou=People,dc=stage-ge,dc=org
#uid: stage1
#cn: Stagiaire Un
#displayName: Stagiaire Un
#givenName: Stagiaire
#sn: Un
#objectClass: posixAccount
#objectClass: inetOrgPerson
#uidNumber: 2001
#gidNumber: 2001
#userPassword: {SSHA}LQRhkwuBi6FMY+CAjZ5tWEU4r1R+C5H8
#mail: stage1@stage-ge.org
#homeDirectory: /home/stage1

# uidNumber: 501 et gidNumber: 501 doivent correspondre avec /etc/passwd

# Groupes
dn: cn={{ ldapunix_group_name }},ou=groups,dc=stage-ge,dc=org
objectClass: top
objectClass: posixGroup
gidNumber: {{ ldapunix_group_id }}
description: All users (unix)
{% for key, value in stagiaires.items() %}
memberuid: {{ key }}
{% endfor %}

# Joli, mais pas inutile dans ce cas
#dn: cn=all_people,ou=groups,dc=stage-ge,dc=org
#objectclass: groupofnames
#cn: all_people
#description: All users (mail)
#{% for key, value in stagiaires.items() %}
#member:cn={{ value.name }} {{ value.firstname }},ou=poeple,dc=stage-ge,dc=org
#{% endfor %}