From df8d6cc719d2af514794bfd29bc9eb63271e2079 Mon Sep 17 00:00:00 2001
From: Jose Castro Leon <jose.castro.leon@cern.ch>
Date: Wed, 10 Oct 2012 08:46:51 +0200
Subject: Filter users in LDAP backend (bug 1052925)

Change-Id: I004e569756698098bf073f5516945f356f88bfea
---
 etc/keystone.conf.sample | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'etc')

diff --git a/etc/keystone.conf.sample b/etc/keystone.conf.sample
index 82bd757c..c81d3b6c 100644
--- a/etc/keystone.conf.sample
+++ b/etc/keystone.conf.sample
@@ -110,6 +110,7 @@
 # allow_subtree_delete = False
 
 # user_tree_dn = ou=Users,dc=example,dc=com
+# user_filter =
 # user_objectclass = inetOrgPerson
 # user_id_attribute = cn
 # user_name_attribute = sn
@@ -118,6 +119,7 @@
 # user_allow_delete = True
 
 # tenant_tree_dn = ou=Groups,dc=example,dc=com
+# tenant_filter =
 # tenant_objectclass = groupOfNames
 # tenant_id_attribute = cn
 # tenant_member_attribute = member
@@ -127,6 +129,7 @@
 # tenant_allow_delete = True
 
 # role_tree_dn = ou=Roles,dc=example,dc=com
+# role_filter =
 # role_objectclass = organizationalRole
 # role_id_attribute = cn
 # role_member_attribute = roleOccupant
-- 
cgit