Files
himmelblau/conf_example.patch
dmulder a8015228fa - Update to version 3.1.8+git0.f72b330e:
* cargo vet
  * Version 3.1.8
  * Update cargo vet audits for backport
  * fix(deps): patch opentelemetry baggage propagation CVE
  * build: cleanup patch overrides
  * fix(auth): retry transient fail user existence lookups
  * fix(rpm): allow tpm2-tss dependency
  * fix(nss): depend on systemd users
  * packaging: disable duplicate NM workaround scripts
  * dispatcher: refine Himmelblau restart workaround
  * fix(sso): update Entra SSO extension
  * fix(rpm): clean SSO policy on erase
  * Add NSS shadow lookups for Himmelblau users
  * fix(nix module): allowed AF_INET and AF_INET6 to systemd sandbox
  * daemon: apply Intune policy asynchronously
  * Handle password changes in password-only auth
  * cargo clippy
  * Update libhimmelblau to latest version
  * deps(rust): bump the all-cargo-updates group across 1 directory with 21 updates
  * Add conf_example.patch (bsc#1268646).

OBS-URL: https://build.opensuse.org/package/show/network:idm/himmelblau?expand=0&rev=110
2026-07-07 16:40:39 +00:00

65 lines
2.5 KiB
Diff
Raw Permalink Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
commit 8344f0a2a34310ba0f2a472be76644618be3a1a1
Author: David Mulder <dmulder@samba.org>
Date: Mon Jun 1 11:20:49 2026 -0600
Remove invalid himmelblau.conf example info
Signed-off-by: David Mulder <dmulder@samba.org>
diff --git a/src/config/himmelblau.conf.example b/src/config/himmelblau.conf.example
index fbecee97..a8f8557f 100644
--- a/src/config/himmelblau.conf.example
+++ b/src/config/himmelblau.conf.example
@@ -1,10 +1,10 @@
[global]
-# REQUIRED: The list of configured domains. This must be specified, or no users
-# will be permitted to authenticate. The first user to authenticate to each
+# REQUIRED: The configured domain. This must be specified, or no users
+# will be permitted to authenticate. The first user to authenticate to the
# domain will be the owner of the device object in the directory. Typically
# this would be the primary user of the device. Specify ONLY the primary domain
# for your tenant.
-# domains =
+# domain =
#
### Optional global values
# Configure whether the logger will output debug messages to the journal.
@@ -73,7 +73,7 @@
#
# CN to UPN mapping allows users to simply enter the short form of their
# username (`dave` instead of `dave@example.com`). Himmelblau will only map CNs
-# to the primary domain (the first domain listed in the `domains` option
+# to the primary domain (the domain listed in the `domain` option
# above). WARNING: CN mapping could mask local users, depending on your PAM
# configuration.
# cn_name_mapping = true
@@ -142,28 +142,3 @@
# cache_timeout = 300
# use_etc_skel = false
# selinux = true
-
-### Domain specific values
-# Individual domain values may be overridden by specifying these values under
-# a domain section. These options take precedent over global config options.
-# For example:
-#
-# [example.com]
-# odc_provider = odc.officeapps.live.com
-# home_prefix = /home/
-# home_attr = UUID
-# home_alias = SPN
-# shell = /bin/zsh
-# idmap_range = 6000000-6999999
-#
-# Application ID used for requesting an ACCESS_TOKEN on behalf of the user.
-# If not set, the domains app_id is used.
-# logon_token_app_id = 544e695f-5d78-442e-b14e-e114e95e640c
-#
-# The `app_id` option specifies the Entra ID application ID that has the
-# necessary permissions to obtain access tokens for the `logon_script`. This
-# application SHOULD also include the `GroupMember.Read.All` permission,
-# enabling Himmelblau to retrieve the `gidNumber` extended attribute.
-#
-# [example.com]
-# app_id = d023f7aa-d214-4b59-911d-6074de623765