ldap-bundle-maint.conf.erb

<%-
  # Update this when host names change.
  env_to_hosts = {
    'sbx' => [
      'ldap-sbx2.stanford.edu',
      'ldap-sbx3.stanford.edu',
      'ldap-sbx4.stanford.edu',
      'ldap-sbx5.stanford.edu',
    ],
    'dev' => [
      'ldap-dev2.stanford.edu',
      'ldap-dev3.stanford.edu',
      'ldap-dev4.stanford.edu',
    ],
    'test' => [
      'ldap-test2.stanford.edu',
      'ldap-test3.stanford.edu',
      'ldap-test4.stanford.edu',
    ],
    'uat' => [
      'ldap-uat1.stanford.edu',
      'ldap-uat2.stanford.edu',
      'ldap-uat3.stanford.edu',
      'ldap-uat4.stanford.edu',
    ],
    'prod' => [
      'ldap1.stanford.edu',
      'ldap2.stanford.edu',
      'ldap3.stanford.edu',
      'ldap4.stanford.edu',
      'ldap5.stanford.edu',
      'ldap6.stanford.edu',
      'ldap7.stanford.edu',
      'ldap8.stanford.edu',
      'ldap9.stanford.edu',
      'ldap10.stanford.edu',
      'ldap11.stanford.edu',
      'ldap12.stanford.edu',
      'ldap13.stanford.edu',
      'ldap14.stanford.edu',
      'ldap15.stanford.edu',
      'ldap19.stanford.edu',
      'ldap-liv1.stanford.edu',
      'ldap-liv2.stanford.edu',
    ],
  }

  ldap_hosts = env_to_hosts[@env]

  # Make list of hosts to update.
  hosts_to_update = ''
  ldap_hosts.each do |ldap_host|
    hosts_to_update += "ldap_host = #{ldap_host}\n"
  end

-%>
#
# The list of hosts to update
<%= hosts_to_update %>
#
# Valid attribute bundle types
bundle_branch = accounts
bundle_branch = people
#
# Valid access types
access_types = gssapi,tls
#
# Kerberos
keytab_file = /etc/ldap/ldap-localhost.keytab
krb_realm = stanford.edu
principal_name = service/<%= @hostname %>
#
# Turn on debugging messages.
#debug = 1
# put new ACLs at the end
#base_number = 9999