From 92c37ae6fde95f904b79ae1a125d90b47efa91c1 Mon Sep 17 00:00:00 2001
From: Benjamin Graillot <graillot@crans.org>
Date: Sat, 11 Dec 2021 10:52:12 +0100
Subject: [PATCH] [slapd] Remove attrs=loginShell,mail,telephoneNumber stanza

---
 roles/slapd/templates/ldap/slapd.conf.j2 | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/roles/slapd/templates/ldap/slapd.conf.j2 b/roles/slapd/templates/ldap/slapd.conf.j2
index b8bd218b..0d7c7214 100644
--- a/roles/slapd/templates/ldap/slapd.conf.j2
+++ b/roles/slapd/templates/ldap/slapd.conf.j2
@@ -166,12 +166,6 @@ access to attrs=userPassword,shadowLastChange
         by dn="cn=replicator,dc=crans,dc=org" read
         by * none
 
-access to attrs=loginShell,mail,telephoneNumber
-        by self write
-        by set="[cn=_nounou,ou=group,dc=crans,dc=org]/memberUid & user/uid" write
-        by dn="cn=replicator,dc=crans,dc=org" read
-        by * read
-
 # Ensure read access to the base for things like
 # supportedSASLMechanisms.  Without this you may
 # have problems with SASL not knowing what
-- 
GitLab