-
Notifications
You must be signed in to change notification settings - Fork 7
/
.env.dist
42 lines (31 loc) · 1.38 KB
/
.env.dist
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
# Heads-up: DRYRUN mode is active by default!
# URL to ldap server, currently only one server is supported
LDAP_SERVER=ldap.example.com
# Bind DN of the bind user (no autonomous binds supported)
LDAP_BIND_DN=CN=bind_user,OU=Users,O=example,C=com
LDAP_BIND_PW=<LDAP_BIND_PW>
LDAP_SEARCH_FILTER=(&(objectClass=person))
LDAP_BASE_DN='OU=Users,O=example,C=com'
LDAP_EMAIL_ATTR=mail
LDAP_SCHEME=ldaps
# URL of your vaultwarden instance
VAULTWARDEN_URL=https://pw.example.com
# Vaultwarden admin token
VAULTWARDEN_ADMIN_TOKEN=<VAULTWARDEN_ADMIN_TOKEN>
# Path to the sqlite DB file, path is relative to bin/
SQLITE_DB=/data/ldap_sync.sqlite
# If set to 1, users which are disabled because they disappeared from LDAP and are then re-enabled by an admin (in Vaultwarden),
# are removed from the management capabilities of this script
UNTIE_RE-ENABLED_USERS=1
# If set to 1, users which are only present in our local state are automatically cleaned up
CLEANUP_VANISHED_USERS=1
# Safe guard: If the number of users to invite exceeds this number we show a warning instead of inviting them.
MAX_USERS_AT_ONCE=50
# Sync every N seconds
SYNC_INTERVAL_SECONDS=1500
# Where should the logfile go, max size per file is 5MB and we keep 5 old files
LOGFILE=/data/logs/ldap_sync.log
# Possible values: INFO, DEBUG, WARN, ERROR
LOGLEVEL=INFO
# If set to 1 we just print the log output but do not perform any changes
DRYRUN=1