diff --git a/templates/configmap.yaml b/templates/configmap.yaml index abab943..cc92cdf 100644 --- a/templates/configmap.yaml +++ b/templates/configmap.yaml @@ -214,17 +214,17 @@ data: auth optional voms auth optional oidc auth sufficient htpasswd - map optional vorolemap - map optional multimap gplazma.multimap.file=/opt/dcache/etc/multimap-id-to-username.conf + map sufficient multimap gplazma.multimap.file=/opt/dcache/etc/multimap-id-to-groupname.conf + map sufficient multimap gplazma.multimap.file=/opt/dcache/etc/multimap-id-to-username.conf map requisite authzdb session requisite roles session requisite authzdb multimap-id-to-username: |- - "dn:/C=DE/ST=Hamburg/O=dCache.ORG/CN=Kermit the frog" username:kermit + "dn:/C=DE/ST=Hamburg/O=dCache.ORG/CN=Kermit the frog" username:kermit uid:1000 gid:1000 - grid-vorolemap: |- - "*" "/desy" desyuser + multimap-id-to-groupname: |- + fqan:/desy username:desyuser uid:1000 gid:2000,true storage-authzdb: |- version 2.1 diff --git a/templates/door.yaml b/templates/door.yaml index 31d5187..8da756c 100644 --- a/templates/door.yaml +++ b/templates/door.yaml @@ -54,9 +54,9 @@ spec: mountPath: /opt/dcache/etc/multimap-id-to-username.conf subPath: multimap-id-to-username.conf readOnly: true - - name: vorolemap - mountPath: /opt/dcache/etc/grid-vorolemap - subPath: grid-vorolemap + - name: multimap-id-to-username + mountPath: /opt/dcache/etc/multimap-id-to-groupname.conf + subPath: multimap-id-to-groupname.conf readOnly: true - name: storage-authzdb mountPath: /opt/dcache/etc/storage-authzdb @@ -124,8 +124,8 @@ spec: configMap: name: {{ $.Release.Name }}-configmap items: - - key: "grid-vorolemap" - path: "grid-vorolemap" + - key: "multimap-id-to-groupname" + path: "multimap-id-to-groupname.conf" - name: storage-authzdb configMap: name: {{ $.Release.Name }}-configmap