fix access list for multimaster recipe (#14)

David Coutadeur · David Coutadeur · commit 8f74d4a3eb96 · 2024-11-21T17:59:15.000+01:00
diff --git a/playbook/multimaster.yml b/playbook/multimaster.yml
@@ -53,8 +53,8 @@
     - ldaptoolbox_olcPasswordHash: "{SSHA256}"
     # Access rights
     - ldaptoolbox_openldap_access_list:
-         - to attrs=userPassword  by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" =wxd  by group/groupOfNames/member.exact="cn=admin,ou=groups,CONFIG_SUFFIX" =wxd  by self =wxd  by * auth
-         - to *  by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" manage  by group/groupOfNames/member.exact="cn=admin,ou=groups,CONFIG_SUFFIX" write  by users read
+         - to attrs=userPassword  by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" =wxd  by group/groupOfNames/member.exact="cn=admin,ou=groups,{{ ldaptoolbox_openldap_suffix }}" =wxd  by self =wxd  by * auth
+         - to *  by dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external,cn=auth" manage  by group/groupOfNames/member.exact="cn=admin,ou=groups,{{ ldaptoolbox_openldap_suffix }}" write  by users read
     # Indexes definition
     - ldaptoolbox_openldap_database_olcDbIndexes:
          - "entryCSN,entryUUID eq"
