macagua/dc.ldif

## dc.ldif
# Root of directory tree "dc=4teamwork,dc=ch"
dn: dc=ch
objectClass: domain
objectClass: top
dc: ch

dn: dc=4teamwork,dc=ch
objectClass: domain
objectClass: top
dc: 4teamwork

## groups.ldif
# OpenGever Mandant 1
dn: cn=og_mandant1_users,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can use the Plone client 1
uniqueMember: uid=vivian,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant1_users

dn: cn=og_mandant1_eingangskorb,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can access the inbox into Plone client 1
uniqueMember: uid=pperez,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant1_eingangskorb

dn: cn=og_mandant1_inbox,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can access the inbox into Plone client 1
uniqueMember: uid=pperez,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant1_inbox

dn: cn=og_mandant1_leser,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can reader the Plone client 1
uniqueMember: uid=jcontreras,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant1_leser

dn: cn=og_mandant1_rolemanager,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can manage the Plone client 1
uniqueMember: uid=lcaballero,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant1_rolemanager

# OpenGever Mandant 2
dn: cn=og_mandant2_users,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can use the Plone client 2
uniqueMember: uid=vivian,ou=Users,dc=4teamwork,dc=ch
uniqueMember: uid=jcontreras,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant2_users

dn: cn=og_mandant2_inbox,ou=Groups,dc=4teamwork,dc=ch
objectClass: groupOfUniqueNames
objectClass: top
ou: Groups
description: People who can access the inbox into Plone client 2
uniqueMember: uid=pperez,ou=Users,dc=4teamwork,dc=ch
cn: og_mandant2_inbox

## ldap_plugin.xml
<?xml version="1.0"  ?>
<ldapplugins>

        <ldapplugin title="4teamwork LDAP" id="ldap" meta_type="Plone LDAP plugin" update="False">

            <interface value="IAuthenticationPlugin"/>
            <interface value="ICredentialsResetPlugin"/>
            <interface value="IGroupEnumerationPlugin"/>
            <interface value="IGroupIntrospection"/>
            <interface value="IGroupManagement"/>
            <interface value="IGroupsPlugin"/>
            <interface value="IPropertiesPlugin"/>
            <interface value="IUserAdderPlugin"/>
            <interface value="IUserEnumerationPlugin"/>
            <interface value="IUserManagement"/>
            <plugin_property id="prefix" type="string" mode="w" value=""/>
            <plugin_property id="title" type="string" mode="wd" value="4teamwork LDAP"/>
            <property id="_login_attr" type="str">
                <item value="uid"/>
            </property>
            <property id="_uid_attr" type="str">
                <item value="uid"/>
            </property>
            <property id="_rdnattr" type="str">
                <item value="cn"/>
            </property>
            <property id="users_base" type="str">
                <item value="ou=Users,ou=OpenGever,dc=4teamwork,dc=ch"/>
            </property>
            <property id="users_scope" type="int">
                <item value="2"/>
            </property>
            <property id="_local_groups" type="bool">
                <item value="False"/>
            </property>
            <property id="_implicit_mapping" type="int">
                <item value="0"/>
            </property>
            <property id="groups_base" type="str">
                <item value="ou=Groups,ou=OpenGever,dc=4teamwork,dc=ch"/>
            </property>
            <property id="groups_scope" type="int">
                <item value="2"/>
            </property>
            <property id="_binduid" type="str">
                <item value="REPLACEME"/>
                <!--<item value="cn=admin,ou=OpenGever,dc=4teamwork,dc=ch"/>-->
            </property>
            <property id="_bindpwd" type="str">
                <item value="REPLACEME"/>
                <!--<item value="123"/>-->
            </property>
            <property id="_binduid_usage" type="int">
                <item value="1"/>
            </property>
            <property id="read_only" type="bool">
                <item value="False"/>
            </property>
            <property id="_user_objclasses" type="list">
                <item value="inetOrgPerson"/>
                <item value="organizationalPerson"/>
                <item value="person"/>
            </property>
            <property id="_extra_user_filter" type="str">
                <item value=""/>
            </property>
            <property id="_pwd_encryption" type="str">
                <item value="SHA"/>
            </property>
            <property id="_roles" type="list">
              <item value="Authenticated" />
            </property>
            <schema>
                <attr id="mail">
                    <item id="public_name" value="email"/>
                    <item id="binary" value="False"/>
                    <item id="ldap_name" value="mail"/>
                    <item id="friendly_name" value="Email address"/>
                    <item id="multivalued" value="False"/>
                </attr>
                <attr id="cn">
                    <item id="public_name" value="fullname"/>
                    <item id="binary" value="False"/>
                    <item id="ldap_name" value="cn"/>
                    <item id="friendly_name" value="Canonical Name"/>
                    <item id="multivalued" value="False"/>
                </attr>
                <attr id="sn">
                    <item id="public_name" value="lastname"/>
                    <item id="binary" value="False"/>
                    <item id="ldap_name" value="sn"/>
                    <item id="friendly_name" value="Last Name"/>
                    <item id="multivalued" value="False"/>
                </attr>
                <attr id="uid">
                    <item id="public_name" value="userid"/>
                    <item id="binary" value="False"/>
                    <item id="ldap_name" value="uid"/>
                    <item id="friendly_name" value="User id"/>
                    <item id="multivalued" value="False"/>
                </attr>
                <attr id="givenName">
                    <item id="public_name" value="firstname"/>
                    <item id="binary" value="False"/>
                    <item id="ldap_name" value="givenName"/>
                    <item id="friendly_name" value="First name"/>
                    <item id="multivalued" value="False"/>
                </attr>
            </schema>
            <server update="False" delete="False">
                <!--<item id="host" value="ldap.4teamwork.ch" type="str"/>-->
                <item id="host" value="localhost" type="str"/>
                <item id="op_timeout" value="-1" type="int"/>
                <!--<item id="protocol" value="ldaps" type="str"/>-->
                <item id="protocol" value="ldap" type="str"/>
                <!--<item id="port" value="636" type="str"/>-->
                <item id="port" value="389" type="str"/>
                <item id="conn_timeout" value="5" type="int"/>
            </server>
        </ldapplugin>

</ldapplugins>

## localhost.json
{
  "ldap":{
    "password":"123",
    "user":"cn=admin,ou=OpenGever,dc=4teamwork,dc=ch"
  }
}

## ou.ldif
dn: ou=OpenGever,dc=4teamwork,dc=ch
objectClass: organizationalUnit
objectClass: top
description: Standard branch for OneGov OpenGever registration
ou: OneGov OpenGever Demo

dn: ou=Users,dc=4teamwork,dc=ch
objectClass: organizationalUnit
objectClass: top
description: Users for OpenGever Demo
ou: Users

dn: ou=Groups,dc=4teamwork,dc=ch
objectClass: organizationalUnit
objectClass: top
description: Groups for OpenGever Demo
ou: Groups

## users.ldif
# Test user "vivian" with password "vivian"
dn: uid=vivian,ou=Users,dc=4teamwork,dc=ch
cn: Vivian Smith-Smythe-Smith
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
uid: vivian
givenName: Vivian
sn: Smith-Smythe-Smith
userPassword: {SHA}vMEv1SbWUFDmiiwtGHV7Tg1pTjo=
mail: vivian@example.com
ou: Users

# Test user "lcaballero" with password "lcaballero"
dn: uid=lcaballero,ou=Users,dc=4teamwork,dc=ch
cn: Leonardo J. Caballero G.
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
uid: lcaballero
givenName: Leonardo J.
sn: Caballero G.
userPassword: {SHA}+towOpErRkYzPmLv+CbX74dYUOk=
mail: lcaballero@example.com
ou: Users

# Test user "pperez" with password "pperez"
dn: uid=pperez,ou=Users,dc=4teamwork,dc=ch
cn: Pedro Perez
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
uid: pperez
givenName: Pedro
sn: Perez
userPassword: {SHA}UWT0uRfCadYUDyHkZ/bLx/D0Pe8=
mail: pperez@example.com
ou: Users

# Test user "jcontreras" with password "jcontreras"
dn: uid=jcontreras,ou=Users,dc=4teamwork,dc=ch
cn: Juan Contreras
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
uid: jcontreras
givenName: Juan
sn: Contreras
userPassword: {SHA}wId2sacrH3kOjDjCrkOpaFRFu+M=
mail: jcontreras@example.com
ou: Users
	# Root of directory tree "dc=4teamwork,dc=ch"
	dn: dc=ch
	objectClass: domain
	objectClass: top
	dc: ch

	dn: dc=4teamwork,dc=ch
	objectClass: domain
	objectClass: top
	dc: 4teamwork
	# OpenGever Mandant 1
	dn: cn=og_mandant1_users,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can use the Plone client 1
	uniqueMember: uid=vivian,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant1_users

	dn: cn=og_mandant1_eingangskorb,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can access the inbox into Plone client 1
	uniqueMember: uid=pperez,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant1_eingangskorb

	dn: cn=og_mandant1_inbox,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can access the inbox into Plone client 1
	uniqueMember: uid=pperez,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant1_inbox

	dn: cn=og_mandant1_leser,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can reader the Plone client 1
	uniqueMember: uid=jcontreras,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant1_leser

	dn: cn=og_mandant1_rolemanager,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can manage the Plone client 1
	uniqueMember: uid=lcaballero,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant1_rolemanager

	# OpenGever Mandant 2
	dn: cn=og_mandant2_users,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can use the Plone client 2
	uniqueMember: uid=vivian,ou=Users,dc=4teamwork,dc=ch
	uniqueMember: uid=jcontreras,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant2_users

	dn: cn=og_mandant2_inbox,ou=Groups,dc=4teamwork,dc=ch
	objectClass: groupOfUniqueNames
	objectClass: top
	ou: Groups
	description: People who can access the inbox into Plone client 2
	uniqueMember: uid=pperez,ou=Users,dc=4teamwork,dc=ch
	cn: og_mandant2_inbox
	<?xml version="1.0" ?>
	<ldapplugins>

	<ldapplugin title="4teamwork LDAP" id="ldap" meta_type="Plone LDAP plugin" update="False">

	<interface value="IAuthenticationPlugin"/>
	<interface value="ICredentialsResetPlugin"/>
	<interface value="IGroupEnumerationPlugin"/>
	<interface value="IGroupIntrospection"/>
	<interface value="IGroupManagement"/>
	<interface value="IGroupsPlugin"/>
	<interface value="IPropertiesPlugin"/>
	<interface value="IUserAdderPlugin"/>
	<interface value="IUserEnumerationPlugin"/>
	<interface value="IUserManagement"/>
	<plugin_property id="prefix" type="string" mode="w" value=""/>
	<plugin_property id="title" type="string" mode="wd" value="4teamwork LDAP"/>
	<property id="_login_attr" type="str">
	<item value="uid"/>
	</property>
	<property id="_uid_attr" type="str">
	<item value="uid"/>
	</property>
	<property id="_rdnattr" type="str">
	<item value="cn"/>
	</property>
	<property id="users_base" type="str">
	<item value="ou=Users,ou=OpenGever,dc=4teamwork,dc=ch"/>
	</property>
	<property id="users_scope" type="int">
	<item value="2"/>
	</property>
	<property id="_local_groups" type="bool">
	<item value="False"/>
	</property>
	<property id="_implicit_mapping" type="int">
	<item value="0"/>
	</property>
	<property id="groups_base" type="str">
	<item value="ou=Groups,ou=OpenGever,dc=4teamwork,dc=ch"/>
	</property>
	<property id="groups_scope" type="int">
	<item value="2"/>
	</property>
	<property id="_binduid" type="str">
	<item value="REPLACEME"/>
	<!--<item value="cn=admin,ou=OpenGever,dc=4teamwork,dc=ch"/>-->
	</property>
	<property id="_bindpwd" type="str">
	<item value="REPLACEME"/>
	<!--<item value="123"/>-->
	</property>
	<property id="_binduid_usage" type="int">
	<item value="1"/>
	</property>
	<property id="read_only" type="bool">
	<item value="False"/>
	</property>
	<property id="_user_objclasses" type="list">
	<item value="inetOrgPerson"/>
	<item value="organizationalPerson"/>
	<item value="person"/>
	</property>
	<property id="_extra_user_filter" type="str">
	<item value=""/>
	</property>
	<property id="_pwd_encryption" type="str">
	<item value="SHA"/>
	</property>
	<property id="_roles" type="list">
	<item value="Authenticated" />
	</property>
	<schema>
	<attr id="mail">
	<item id="public_name" value="email"/>
	<item id="binary" value="False"/>
	<item id="ldap_name" value="mail"/>
	<item id="friendly_name" value="Email address"/>
	<item id="multivalued" value="False"/>
	</attr>
	<attr id="cn">
	<item id="public_name" value="fullname"/>
	<item id="binary" value="False"/>
	<item id="ldap_name" value="cn"/>
	<item id="friendly_name" value="Canonical Name"/>
	<item id="multivalued" value="False"/>
	</attr>
	<attr id="sn">
	<item id="public_name" value="lastname"/>
	<item id="binary" value="False"/>
	<item id="ldap_name" value="sn"/>
	<item id="friendly_name" value="Last Name"/>
	<item id="multivalued" value="False"/>
	</attr>
	<attr id="uid">
	<item id="public_name" value="userid"/>
	<item id="binary" value="False"/>
	<item id="ldap_name" value="uid"/>
	<item id="friendly_name" value="User id"/>
	<item id="multivalued" value="False"/>
	</attr>
	<attr id="givenName">
	<item id="public_name" value="firstname"/>
	<item id="binary" value="False"/>
	<item id="ldap_name" value="givenName"/>
	<item id="friendly_name" value="First name"/>
	<item id="multivalued" value="False"/>
	</attr>
	</schema>
	<server update="False" delete="False">
	<!--<item id="host" value="ldap.4teamwork.ch" type="str"/>-->
	<item id="host" value="localhost" type="str"/>
	<item id="op_timeout" value="-1" type="int"/>
	<!--<item id="protocol" value="ldaps" type="str"/>-->
	<item id="protocol" value="ldap" type="str"/>
	<!--<item id="port" value="636" type="str"/>-->
	<item id="port" value="389" type="str"/>
	<item id="conn_timeout" value="5" type="int"/>
	</server>
	</ldapplugin>

	</ldapplugins>
	{
	"ldap":{
	"password":"123",
	"user":"cn=admin,ou=OpenGever,dc=4teamwork,dc=ch"
	}
	}
	dn: ou=OpenGever,dc=4teamwork,dc=ch
	objectClass: organizationalUnit
	objectClass: top
	description: Standard branch for OneGov OpenGever registration
	ou: OneGov OpenGever Demo

	dn: ou=Users,dc=4teamwork,dc=ch
	objectClass: organizationalUnit
	objectClass: top
	description: Users for OpenGever Demo
	ou: Users

	dn: ou=Groups,dc=4teamwork,dc=ch
	objectClass: organizationalUnit
	objectClass: top
	description: Groups for OpenGever Demo
	ou: Groups
	# Test user "vivian" with password "vivian"
	dn: uid=vivian,ou=Users,dc=4teamwork,dc=ch
	cn: Vivian Smith-Smythe-Smith
	objectClass: inetOrgPerson
	objectClass: organizationalPerson
	objectClass: person
	uid: vivian
	givenName: Vivian
	sn: Smith-Smythe-Smith
	userPassword: {SHA}vMEv1SbWUFDmiiwtGHV7Tg1pTjo=
	mail: vivian@example.com
	ou: Users

	# Test user "lcaballero" with password "lcaballero"
	dn: uid=lcaballero,ou=Users,dc=4teamwork,dc=ch
	cn: Leonardo J. Caballero G.
	objectClass: inetOrgPerson
	objectClass: organizationalPerson
	objectClass: person
	uid: lcaballero
	givenName: Leonardo J.
	sn: Caballero G.
	userPassword: {SHA}+towOpErRkYzPmLv+CbX74dYUOk=
	mail: lcaballero@example.com
	ou: Users

	# Test user "pperez" with password "pperez"
	dn: uid=pperez,ou=Users,dc=4teamwork,dc=ch
	cn: Pedro Perez
	objectClass: inetOrgPerson
	objectClass: organizationalPerson
	objectClass: person
	uid: pperez
	givenName: Pedro
	sn: Perez
	userPassword: {SHA}UWT0uRfCadYUDyHkZ/bLx/D0Pe8=
	mail: pperez@example.com
	ou: Users

	# Test user "jcontreras" with password "jcontreras"
	dn: uid=jcontreras,ou=Users,dc=4teamwork,dc=ch
	cn: Juan Contreras
	objectClass: inetOrgPerson
	objectClass: organizationalPerson
	objectClass: person
	uid: jcontreras
	givenName: Juan
	sn: Contreras
	userPassword: {SHA}wId2sacrH3kOjDjCrkOpaFRFu+M=
	mail: jcontreras@example.com
	ou: Users