From 642ccdf4d82304907a0d2d918d03f5cc9bd0e7c5 Mon Sep 17 00:00:00 2001 From: shodan Date: Fri, 20 Mar 2026 09:41:05 +0000 Subject: [PATCH] ldif --- openldap/configmaps.yaml | 278 ---------------------- samba-directory/samba-ad-server.yaml | 338 ++++++++++++++++++++++++--- 2 files changed, 312 insertions(+), 304 deletions(-) diff --git a/openldap/configmaps.yaml b/openldap/configmaps.yaml index c39baa6..89e805a 100644 --- a/openldap/configmaps.yaml +++ b/openldap/configmaps.yaml @@ -1364,284 +1364,6 @@ data: objectclass: top mail: argocd@undercloud.dev userpassword: {MD5}qV5qEM7LsF/Vkqir89mHAw== - jpegphoto:: /9j/4AAQSkZJRgABAQEASABIAAD/4R5sRXhpZgAASUkqAAgAAAAAAA4AAAAIAAAB - BAABAAAAAAEAAAEBBAABAAAAAAEAAAIBAwADAAAAdAAAAAMBAwABAAAABgAAAAYBAwABAAAABgA - AABUBAwABAAAAAwAAAAECBAABAAAAegAAAAICBAABAAAA6h0AAAAAAAAIAAgACAD/2P/gABBKRk - lGAAEBAAABAAEAAP/bAEMACAYGBwYFCAcHBwkJCAoMFA0MCwsMGRITDxQdGh8eHRocHCAkLicgI - iwjHBwoNyksMDE0NDQfJzk9ODI8LjM0Mv/bAEMBCQkJDAsMGA0NGDIhHCEyMjIyMjIyMjIyMjIy - MjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMjIyMv/AABEIAQABAAMBIgACEQEDEQH - /xAAfAAABBQEBAQEBAQAAAAAAAAAAAQIDBAUGBwgJCgv/xAC1EAACAQMDAgQDBQUEBAAAAX0BAg - MABBEFEiExQQYTUWEHInEUMoGRoQgjQrHBFVLR8CQzYnKCCQoWFxgZGiUmJygpKjQ1Njc4OTpDR - EVGR0hJSlNUVVZXWFlaY2RlZmdoaWpzdHV2d3h5eoOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmq - srO0tba3uLm6wsPExcbHyMnK0tPU1dbX2Nna4eLj5OXm5+jp6vHy8/T19vf4+fr/xAAfAQADAQE - BAQEBAQEBAAAAAAAAAQIDBAUGBwgJCgv/xAC1EQACAQIEBAMEBwUEBAABAncAAQIDEQQFITEGEk - FRB2FxEyIygQgUQpGhscEJIzNS8BVictEKFiQ04SXxFxgZGiYnKCkqNTY3ODk6Q0RFRkdISUpTV - FVWV1hZWmNkZWZnaGlqc3R1dnd4eXqCg4SFhoeIiYqSk5SVlpeYmZqio6Slpqeoqaqys7S1tre4 - ubrCw8TFxsfIycrS09TV1tfY2dri4+Tl5ufo6ery8/T19vf4+fr/2gAMAwEAAhEDEQA/AOp/4Z/ - 8If3bj/v63/xVH/DP/hD+7cf9/W/+Kr1aigDyn/hn/wAIf3bj/v63/wAVR/wz/wCEP7tx/wB/W/ - 8Aiq9WooA8p/4Z/wDCH924/wC/rf8AxVH/AAz/AOEP7tx/39b/AOKr1aigDyn/AIZ/8If3bj/v6 - 3/xVH/DP/hD+7cf9/W/+Kr1aigDyn/hn/wh/duP+/rf/FUf8M/+EP7tx/39b/4qvVqKAPKf+Gf/ - AAh/duP+/rf/ABVH/DP/AIQ/u3H/AH9b/wCKr0y51C3th8z7m7KvJrOe7vrw4iHkx+vQ1ag3qQ5 - pHASfAbwVCuZGmUZxzK3/AMVVN/gx4GUkKt25H9125/8AHq9LTTkJ3TO0jHrk1ZS3hj+7Go98VX - LFeZLnI8qt/g54NUnfpl1OD0H2l0x+tSS/BjwhIR5Wj3Mfr/pbnP616rRReK6E3k+p5TF8GPCMZ - Pm6PcyDsPtbjH61J/wqHwKv39Duh9L2Q/1r1Kii8X0C8u55mnwg+HDEA6deJk4+a6fj9aux/A/4 - ezDMdjOwzji7k/xru3t4ZPvRqffFVn05Ad0LtGw6YNHLF+RSnI5H/hRHgL/oHXP/AIFyf40f8KI - 8Bf8AQOuf/AuT/GuvS6vrM/vR50fr3q/a6hBdcK21h/C3FS4NalKaZwP/AAojwF/0Drn/AMC5P8 - aP+FEeAv8AoHXP/gXJ/jXpNFQWebf8KI8Bf9A65/8AAuT/ABo/4UR4C/6B1z/4Fyf416TRQB5t/ - wAKI8Bf9A65/wDAuT/Gj/hRHgL/AKB1z/4Fyf416TRQB5t/wojwF/0Drn/wLk/xo/4UR4C/6B1z - /wCBcn+Nek0UAebf8KI8Bf8AQOuf/AuT/Gj/AIUR4C/6B1z/AOBcn+Nek0UAFFFFABRRRQAUUUU - AFFFRzTR28RkkbCigB0kiRLukdVHqTisafUJ71mhtQVjz9/vUbPLqsoZhshXoBV6ONIkCoMAVso - qO+5i5uW2xBBYxxfM/zyHkk1aoAJOBT9pRgWHFS23uJIaVYDJU4+lJViWeJYySwPtWc1wx6ACkr - scrIs0VTMrn+Km7j6mq5SOYvUVR3H1NOErj+KjlDmLlFVluGHUA1Ksyt3wfelYd0SVVnsY5TvT5 - JByCKtUUJtbDKcGoT2brFdDcmfv4rYR0kXcjBh6g5qjJGsqFXGQaoq8ulSEqPMgbqD2puKltuOM - 3HfY3qKjhmSeISRtlTUlZGwUUUUAFFFFABRRRQAUUUUAFFFFABRRRQAjMqIWY4UDJJrBd5NVny3 - ywoeMd6m1Kdrm4FnFnAPzkGrEUSwxhFGAK1iuVX6mM3d2HKoRQqjAHQU9ELnAoRC5wKmklS2j56 - 9h61LY0urHfJAmSce9Z9zdedhVBCj9ailmeZ8seOw9KjqlG2rIlO+iCiiq13f21km6aQD2HJNOU - lFXbFCEpvlirss0Vy914pYki2hwOzP1/Ks6TXdRkP+vK/wC6MVxTzGjF2Wp6dPJsTNXlZep3NFc - D/bupRn/j4Y/Xmrtt4sukIE8ayDuRwaUcxove6KnkmJirxaZ2NFZthrlnf4VH2Sf3H4NaVdsJxm - rxdzy6tKdKXLUVmSJMye49Kso4cZFUqVWKnIOKbRKZepGUMpVhkHtTI5A496kqSzPR5NLn4+aBz - 09K3VZXUMpypGQaz5Y1ljKMMg1Bps7W1wbOU8fwE05LmV+o4OzsbFFFFZGwUUUUAFFFFABRRRQA - UUUUAFVr+5+y2rSA/N0X61ZrF1B/tWox24+6nLHNXBXepM3ZBYQlYzNJzJIckmroBY4FIAAAB0F - WIEwNx/CnKV9TOK6CsVt4iT/+usqWVpnLMfw9KmvJ/Mk2j7q1WpxVtSZyvogoorO1jURp9oSuPN - fhB/Wic1CLlLZBSpSqzUIbsr6zra2KmGAhpz177a5N2uLuRnbfK55Jxmo3dnYsxJY9Sa3bJFS1j - 2jqMmvn61eWIlroux9fQw1PBU/dV292YLKynDAg+hFJWtqqL5aP0bOKya5ZKzsdtOfPG4hGRioi - MHFTUyQd6SNEMDFWBUkEcgiul0XxGyEQXr5X+GQ9vrXM0VvSrTpS5osxxOGp4iHJUX/APUgQRkH - Iorm/DWrGYfY5myyj5CfT0rpK+ho1Y1YKcT4rFYaWHqunIVSVII61cjcOuRVKnxPsb2PWtGjBOx - cqnfwloxKn+sjORirlBGQQehpJ2dymS2NyLq1R/wCLo31qzWNp7/ZdQktz91+VNbNTNWZtB3QUU - UVBQUUUUAFFFFABRRTJZBDC8jZwoycUAOZtqFvQZrDsMyyzXDdXY4/Omy6yZ4JI2iA3DAI5qzZJ - stIx6jP51souMXcxlJSehZUbmA9amuJPJgOOvQU2AZfPpUGoPl1T0Gajd2He0blKiiitDAK4XW7 - z7ZqLkH5E+Va7K+l8mxnkHVY2I+uK89YlmLHqTmvKzOpZKC66n0GR0U5SqvpoJVmC9lt12qQV9D - VaivHTa2Pomk1Zks9xJcPuc/QCoqKKL3BJLRBTX+6adSN900DIaKKKosltp2trmOVTgqc16RbTC - 4topl6OoavMq7rw1MZNIRSclCR+telltRqbh3PCz2inSjV6p2+82KKKK9k+WLcLbkx3FSVVgbD4 - 9atVDNFsUb/MUkNwvVGGa21O5AfUVlXqb7SQegz+VV7XWTEkcTxjaowWHWqcXKOnQqMlF6m9RRR - WJsFFFFABRRRQAVXv/wDjwn/3DViq9/8A8eE/+4acd0J7HKKMsB710cY2xIvoAK51P9Yv1FdJXT - W6HNAsW4+Ums66bdcOa0oP9X+NZUpzKx96xjuaT+FDKKKw/EWrNY24gg/4+JeB7CipNU4uTChQn - XqKnDdkXiPWYIbWS0ikDTMMELzgd81yMUV3c5MEEsgHXy0LV23h3wejIt9qgLyP8yxHp9TXZRwR - RIFjjVVHQAV5s6EsRLnnoe/TxdHAx9lRXM+r8zxiW2vbdd01vPGvq8ZA/UVEs5H3ua9uaNGGGRS - PcVy+v+Dra9ieeyUQ3I52j7r/AP16yqYFpXi7nTQzeE5ctSNvM4BWDDINLVd0ktbhopFKuhwymp - wcgEV50o2Z6zXVC01yApyaUnAJNLYWM+r6hHbQD5nPXso9aIQcnZCbSTlLZFUue1WFsL+RdyWdy - w9ViY/0r07R/DFjpUSnYJZ+pkYd/atsIo6KB+FelDA6e8zyKucxjK1ON15niEiTQNtmjdG9HUg1 - 1PhPULdIntpJAkrNlQxxn6V39zY2t5EYriBHQ9QRXn3iXwqdIBv7J2MAbJU9Uz/SqVCWHl7SOth - PF0sfB0Knut7ep1lFYXhvVzf2xhmI8+Pv/eFbtepTqKpFSifNYihOhUdOe6HIcODV2qA61eHQU5 - ERGy8wuP8AZNc6epro5P8AVP8A7prnD94/WtaPUUzs6KKK5TqCiiigAooooAKr3/8Ax4T/AO4as - VXv/wDjwn/3DTjuhPY5VPvr9a6QHIzXNA4INdFC26GNvVQa6a3Q5oFyD/V/jWVMMTMPetS3PBFZ - 94u25b35rGO5pP4UQE4Ga5fRbca14xmnlGYrdi2DznBwv9DXTSf6tvoaxfAWPtV+G/1mTn16iuf - E6zhF7HoZf7lGtUW9kvvZ3Nef/En4oWfgGCKFbcXeozLuSDzNoC5xuJwfQ9u1egV4d8cPhxqmv3 - 8PiDSInuZI4BBLbqRnAZjkA/7x/KtDlN34cfGS28a6m+lXtj9ivipaELJvWQDqM4GDz0r1Svm74 - N/DLXIPFdvr2q2ktlb2YZo1lwrOxG3p1AwTX0jQB574+01YbqK/jUDzvlfA6sO/5AVycDZUj0r0 - Lx8V/sWPPXzPlrzyD7xrx8bFKo7H1eWzc8Kr9NB05woHrXofgXTlttJ+2Mv7ycnnuFz/APWzXnV - x1Fet+HCD4esdvTyl/lV4CKcrmObzcaCiurNMkAEk4ArxDxX+0FHpGvTafpWkreQwHY8zz7MsOo - A2np9a9tljEsLxt0dSp/Gvkrxn8K/FGn+KLsWmlXF3bXEpkimiwwO455weOT3xXqnzR9K+CvGNl - 420CPU7RGiJ+WSJjko3cZ7jg810E0SzQvE4yrggivPfg74LvPB3haRNRTy727cSSxbg2zGcDgkd - DXotAJ2PJQjaJ4rMI4CTBf8AgLY/oa70HIBrifF+D4tnCffymceu0V2kf+rX6CsMFo5x6JnoZx7 - 0KNV7tf5Dh1q8Puj6VSUZYCr1dkjxojZP9U/+6a5w/eP1ropjtgkJ7Kf5Vzh5JrWj1FM7SiiiuU - 6gooooAKKKKACormMy2ssa9WUgVLRQtAOaOkXSAsycD0YVd0999ovqvFbBGQR61hW3+j309uQQN - xK5rfnc07mEoKL0NSA4kx61FqEf3ZB9DSg4IPpVmRBNCV9RxWezuUleLRjEZGK5bS7j+wvGMiSn - bDcsRuPTB5H64rqiCpIPUVi+INI/tG2EkXFxFyvuPSs8TByipR3Wp05fWhCbp1PhmrPy7M7YEEZ - ByDRXB+H/ABj9lVbHVcgodqy9x7H/ABrtre7t7uMPbzJKp7oc1FOrGoro0xGFqUJWktO/Qmopks - 0cCb5XVF9WOK5HXvG0EETwaayyzHjzc5Vfp6051IwV5MVDD1K8uWCMvx5qiXN7HYxMGWDlyP7x/ - wDrGuXgXCk+tMJe4maR2LMxyzHuanAwMCvDr1OeTZ9bRoqhSVNdCOdcqD6V3/gTU0n002LN+9hJ - IBPJUn/69cIRkYNJaXU+mXqXNu210OR6H2NVhq3s5XM8Vh1iKLp9eh7VRXO6N4vsdRiRJ5Ft7g8 - FWOAT7GuhVldQykEHuK9uM4zV4s+Uq0alKXLNWFqK4njtbeSeVgqIuSSagvdUstPQtc3CR+xPJr - z3xF4ol1pxaWilbbdx/ec1nVrRprzN8Lg6leW1o9WU4S+t+KTPyVaYOTj+EdP0Fd6BgYrF8PaR/ - Z1r5ko/fycn2HpW1V4Sk4QvLd6mWaYmNaqo0/hirIkgXMn0q3UMC4TPrU1dDOBbFXUH2Wj+p4qn - Fo9zIUJUKh6nPT8Knuh9ovYLYZIyC2PStwDAA9KrncErDjBSeotFFFYG4UUUUAFFFFABRRRQAVk - atGYpYrtexw1a9RzwrPA8TdGFVCVncmSurFNHDoGHQjNWYH/hP4Vk2Uhhle1kzlSduavgkHIqpR - toZRdhL6DnzVH1qjWs0ymIgjJx0rJIwcU47CqJXujA8T6dBLYvdbAJlIG4d+cc1xfkupyDXoWur - v0ecYzwD+Rrha8XMfdqprqj6nJaspYdpu9mVjHIxy3J96csH94/lU9FcDmz2OZiABRgUtFFSSFI - QGGD0paKAIGg/un86QJKucZGfSrFFUpsrmZWELHrgV2nhjToI7FLrYDMxI3HtzjiuUrudBXbo0A - +p/Wu/Lveq69EeRnVWUcOkna7NKnIhdgKb1OKtxR7F56mvbbPk0rkgGBgU13CIWPQDNOqheyNNI - lpGfmY80oq7KZNpMZmnlu2HU4Wteo7eFYIEiXooqSonK7ubRVlYKKKKkoKKKKACiiigAooooAKK - KKAM3VbVnQXMWfMj7AdaZa3C3EWf4hwwrVrGv7VrOT7Vb/dP3lrWL5lysynG3vIt1FLFu+ZetEE - 6XEe5fxHpUtLVMjcxNWUnS7kf9Mz/KuAr03VYVk0y69fJf8Aka8y6GvIzP44vyPo8j/hTXn+gUU - UV5h7het9JubnQIdVhBkRi4kVRkptcr0+gBqjVvwR4xttF8R3XhvVrhIo7uVZLBpCACWCgpn13Z - x3O6vQ77wvpl+xkMbROeS0ZxmvRlg1Uip0+p48My9lOVOstnueY1csdNmvhI6ArFEpZ5D0HtXbQ - +CdOjkDPJM4HYkY/lWB4y8TafprweFtLKG8nYGZYz/qY1BbLemSAPxPpUxwTinKpsi55nGbUKKu - 2c5RRRXAeqFd9pC40u2GP4B/KuBr0zSYVj0u0PUmFD+gr08s+OT8jxM8/hQXn+hZii2/M3WpaKi - nnSCPc5+g9a9fc+b2G3VwtvFn+I8KPWnaValQbqXPmP0BGMVX0+3N/MbmfJRT8q9jW3Tm+VcqLh - G/vMKKKKyNQooooAKKKKACiiigAooooAKKKKACkZQylWGQeoNLRQBjXdhJaSC4tBlf4kp9tdx3C - jHD91Na3Ws670tJT5kH7qUdMcCtVJPSRlKFtYjbpd1pMvrGw/SvLJBiRx6E16O9xNbK0V3GemN4 - 6V5zN/r5Mf3j/OvKzSNuV+p7uRv416DKKKK8k985Hx74dfWtJ8+2UG6t/mUd2XuP51yek/Frxn4 - fiNol8JVTgJcKTsx2GCK9armNZ8CaPrM7TsjW8zfeeI4z+HT9K7sLi1TXJPY8rH5e60vaU9zkNS - +MvjTVYPs/29YAxwfs6EFvbkmuh8AaDPZW0uqXysLy7JY7uuCc5P16/jVrSPh/o2lTrMUe5lX7r - Tc4/Dp+ldXjAwKeKxaqR5IbCwOXulL2lTfoFFFFcB6w5BmRR6kV6laLssoF9I1H6V5dD/r48/3h - /OvRkuZ7hEitI26AbiK9bK435n6HgZ5LSC9Szc3cduvPLdlFR2+nyXrGe7yq/wAKj0qzaaUkeJL - jEsp67uRWj0r1XNR0ieFGF9ZCKqooVQAoGAB2paKKyNQooooAKKKKACiiigAooooAKKKKACiiig - AooooAKKguL21tSouLiOIsCQHbGcVk3Pi/RbZypuvMxjmIbh+lTKcY7s1hRqVPgi38jUv5reC0e - S5AMf3cEdSeAK8mvkWK+mVPu7jitXVvE02s6rBFESlmsqbV/vcjk1nanbtbajNDIcsp5P1Ga8vG - VVUWmyPfy/CvD/HvJbFQGlpu0545pM4rgsepYfRTd1LupWCwtFJupMmiwWHUhb0pvWnbfWmBNZb - Dew+a2E3jca9ghWJYl8kLsIBBXoRXjDcIa6rw/wCNVtLaO01FSUjG1ZV5IAHAI7134GtGF4y6nl - ZnhJ1kp01e3Q9AorHtfFGkXbbUvEQ8YEh25+lacFxDcoXglSRAcZU5Ga9SM4y2Z4E6VSHxxaJaK - KKozCiiigAooooAKKKKACiiigAooooAKKKKACiiigCKe1gulCzwpIFOQHGcGqkmhaVKSX0+2LHq - TGM1oUUnFPdFxqTj8La+ZiReE9Gin80Wasf7r8r+VcR4mTZ4huxjA3DH0wK9SrzLxY4bxDOP7oA - rgx0IxpKytqerldWpUrvnbehS0oIbs7xnCEj61RxWjo9uJ55mLFfJhaTjvyBj9azq8x/Cj24v35 - fITaKNtW9QgNteNEQAQqHA91B/rVWpd07FxlzK6E20AUtXNLi8+/WPjlHPPshNC1dglLlTbKdXN - SRI7hUTsgz9ap1qa5CkVxbMgOZbdXbPrkj+gppe62RJ2nFeozQrWK91q2t513ROxDD8DXeQ+E9G - hl3izV/Z/mH5VxvhNgPEMGQOQQK9Nr08BTi6bbXU8XNK1SFVRjJpWKCaLpcasqWFsoYYIEYGaux - xpFGscahUUYCgYAp1FegopbI8iU5S+J3CiiimSFFFFABRRRQAUUUUAFFFFABRRRQAUUUUAFFFFA - BRRRQAV5z40hSHXsoMGSJXb3OSP6CvRq4Dx1GRq0EmeDCF/In/ABrjx6vR+Z6WVO2It5MztCQiL - Upc8Lakfmy/4VkAFiABkngVs6HHK1jqpRfk+zEE++Rj+tY8TbJUb+6wNeVL4Ir1/M96H8Sfy/I0 - dfGNYkB/55xf+i1rMrX8SA/2wzkcPHGR/wB8LWSqlmCqMk9AKVX+I/Uqg/3UfQStPw+C2sxKOpj - lH/kNqzWUoxVhgjgg1qeHcjW4iOoST/0BqKX8ReoV/wCFL0ZlspR2U9QcGtnX0zFps2fvWwXH0J - /xrIlJaZyRgliTWxrcUn9naTOf9W1vtH1BOf5inD4J/L8yKn8SD9fyJfBtus+vqzEgxRmRceuQP - 616RXn/AIFjJ1iaT+EQEfmR/hXoFepgFalfzPCzV3xFvJBRRRXaeaFFFFABRRRQAUUUUAFFFFAB - RRRQAUUUUAFFFFABRRRQAUUVTup75Di1tFk93cAUm7FRi5OyLlef+OJQ+qwopB2xA5B9zWteW/i - m6BUSxwrz/q2AP5isQ+DdWeUb9h3N8zl849zXBipVKkeSMGergadKjP2k6i9C/wCC4hJp+pBhwd - o/Q1yunqG1K1UgEGZAQe/IrvoobTwrokoeYPKw5GeWPoBXD6Mgk1m0UqT+8BwBnpzXLWpqPs4Pf - r9524epzutVXwvb5I0vGPGuMoAACKAB9KztFtVvNXtoHzsZxuwcHFaPjE/8T+T/AHV/kKk8FwLL - rRdk3eWhIyuQD6+xqZR5sTy+ZpGfJglL+6Zet2y2ms3MKfcDnb9K0PBwU6/HnqFbH5GpfGsCxay - sipt8xOcLgE+vueai8Hf8h+P/AHW/kaFHlxPL5hKfPgnL+6ZOpf8AIUu/+uz/APoRro/FVsbfRd - Kjx9wMCR9BWFrabNauxsK/vCcEYrt5IbPxRosSrKFlUcYPKn3H5VVKnz+0it/+CRiKvJ7Go/hW/ - wBxgeCJ44tTlR3VS8eFyepyK9ArzoeDtWSUlNgKn5XD4z7itu0t/FNqApljlUYyJGBJ/E11YWc6 - ceSUGcOOp0q0/aQqI6qiqVrPfO2Lq0WP3RwRV2u9O55UouLswooopkhRRRQAUUUUAFFFFABRRRQ - AUUUUAFFFFABRRRQAUUUUAV5heFj5DQBccb1JP6GsufT9em3BdWijUnosA6enNblQXCXbH/R5oU - GP+WkZbn8CKznBNa3+82p1XF6W+a/4c5OXwXeXMga41MSEcZZST/Ordno+keHJBeXV2DPGDjc3T - PGQo5PBqe60PVrtdsmt4XOdqwY/9mrNk8DTTMWk1UuT3aIn/wBmrjdJxfNCnr5v/gnoqupx5ata - y7Jf8A5zXtRTU9WluI1xGcBT6gDrXVeB7KWC0uLiSNkExULuGMgZ5/Wn2XgizgkV7iZ5ypBAA2g - /XrXUKqooVQAo4AFGHw01U9rU3DGY2k6KoUdv8jlfHFlLPaW9xHGziEkMV5wDj/CuT0PUBpmqxX - DY2Dhsjsa9WZQylWAIPBBrmL3wTZTuXt5ngJJJGNwH0oxGGm6ntae4YPG040nQrbf5i3mk6V4lb - 7XbXYEzLj5WHb1HWqcXgu9tpC1vqgjzxwpz/Olj8DTwsGj1UoR3WIj/ANmrStdE1a0Xamt7lzna - 8Gf/AGahUnJ806evdP8A4IOuqceWlWuuzX/AJINP16HaG1aKRQRw0A6enFakIvAw89oCvfYpB/U - 0sCXSn/SJoXGP4IyvP4k1PXZCCW1/vPOqVHJ62+S/4YKKKK0MQooooAKKKKACiiigAooooA//2f - /iArBJQ0NfUFJPRklMRQABAQAAAqBsY21zBDAAAG1udHJSR0IgWFlaIAfnAAMABwAOADIANGFjc - 3BBUFBMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD21gABAAAAANMtbGNtcwAAAAAAAAAAAAAA - AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADWRlc2MAAAEgAAAAQGNwcnQAAAF - gAAAANnd0cHQAAAGYAAAAFGNoYWQAAAGsAAAALHJYWVoAAAHYAAAAFGJYWVoAAAHsAAAAFGdYWV - oAAAIAAAAAFHJUUkMAAAIUAAAAIGdUUkMAAAIUAAAAIGJUUkMAAAIUAAAAIGNocm0AAAI0AAAAJ - GRtbmQAAAJYAAAAJGRtZGQAAAJ8AAAAJG1sdWMAAAAAAAAAAQAAAAxlblVTAAAAJAAAABwARwBJ - AE0AUAAgAGIAdQBpAGwAdAAtAGkAbgAgAHMAUgBHAEJtbHVjAAAAAAAAAAEAAAAMZW5VUwAAABo - AAAAcAFAAdQBiAGwAaQBjACAARABvAG0AYQBpAG4AAFhZWiAAAAAAAAD21gABAAAAANMtc2YzMg - AAAAAAAQxCAAAF3v//8yUAAAeTAAD9kP//+6H///2iAAAD3AAAwG5YWVogAAAAAAAAb6AAADj1A - AADkFhZWiAAAAAAAAAknwAAD4QAALbEWFlaIAAAAAAAAGKXAAC3hwAAGNlwYXJhAAAAAAADAAAA - AmZmAADypwAADVkAABPQAAAKW2Nocm0AAAAAAAMAAAAAo9cAAFR8AABMzQAAmZoAACZnAAAPXG1 - sdWMAAAAAAAAAAQAAAAxlblVTAAAACAAAABwARwBJAE0AUG1sdWMAAAAAAAAAAQAAAAxlblVTAA - AACAAAABwAcwBSAEcAQv/bAEMACAYGBwYFCAcHBwkJCAoMFQ4MCwsMGRITDxUeGyAfHhsdHSElM - CkhIy0kHR0qOSotMTM2NjYgKDs/OjQ+MDU2M//bAEMBCQkJDAsMGA4OGDMiHSIzMzMzMzMzMzMz - MzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzMzM//CABEIAMgAyAMBEQACEQE - DEQH/xAAbAAEAAwEBAQEAAAAAAAAAAAAAAwQFAgEGB//EABkBAQADAQEAAAAAAAAAAAAAAAABAg - MEBf/aAAwDAQACEAMQAAAB+/AAAAI5iKa+S8R6n2EsWkiQAAAAAABHMQWp6dwAA4l4T1vJEgAAA - AAV7V4mskJItDNeUJIdHSRHLuLWK2AAAAAgtXiay1n1Na2fgAAJYnpPB2tPWwAAAHExXtSas+Fe - 1BSw7M7l7oaa9Wrf6OLS6uD1HcTImOVit+4kAAAVL0lrHS1W2YzOT0anN2RxaOLeJ5mbu3Jt9/j - +ksT0mOZt0uAAB4ipfOzW9a1OUQZ7YPm+3NNI1uIkniZG33eRe34/SaLRTFumnqQABna5WaTJFq - tsxmcnoZnJ6IAHE2F7fj2+7yBLFvSCy/noAAMffDRyv7E17Uhrrm8npzTXPy6Ysr+o8mbO2Vy+F - Omux2+TNbKSJ7TR0rq47AADI3w0cbk17UzuX097fixjYifkOL2OMrW98fqOzysY2In5rn9DZ7PI - 7TJE0dK6uOwAAxt8NLK/UWrWzq83pX9uP8qP14+d5vSy+bq3evgv78X5afrh87zejqdnkSRPaaG - ldbHYAAUtM+4T1tUtnncvp7+/EPIfIcfsx42udGH1HX5Y8ifmef0Nns8iWLeHMzcpcAACnfOxWY - pinW+fzelYmudl0V8teojmZu7YXNMadNdTr8uxfGaLRSuU0AAAFe1CJYtUtnkcXqUObuIAAJv9P - Dr9vlyxb0JsVuAAABTvnLDhGPyejm8veLGuFfLee+cFNBpdXBsdfndpilcpoAAAAOUVNKTVZPL3 - 5HJ6Ard3lfQ2pixfrg9Ua/V5+t18ENlvO/SQAAAAOUVb0oc3bjcXpCjfL5nq4fo+bt0c9hsdvm6 - HTxWqX6SAAAAAAMnHpweL0yAAPE7/AG+ZrbcwAAAAAA5ic/Poy8Oujhul5EgehFnXPc6uC9pz+g - AAAAAAq56/NcPqeHMW5OkdTHp9J3eZb0xAAAAAAAFemnzfD6ccW7mIK3ntTmJ7mv0nd5li+YAAA - AAAAjrb5ri9PmLeQhreW1epjua/R9vmy2oAAAAAAAKWW+RzdnMTwtYtnWppJNepjW6eO9rgAAAA - AABFW1amsFNIa3z8enf6/OwOT0dDbmmtSe+dm+UtqgAAAAAACvTSjl0eo1ejky+fr5Te157F8wA - AAP/EACwQAAIBAgQFAwQDAQAAAAAAAAECAwAEEBESMxMgITAxBSJAFBUkNDJBRCP/2gAIAQEAAQ - UC7JdVri1qkrOStUlcWg6t8FnC173oIBzFQa96Urhu88nULlgB0zrVWqtVZ4lc6R+vbkfKlXSAK - LBaz5wcGXUEfPtM2lVFAUzZYyXCrTTSNWpqE0i1HdZ15wBwYUral7D+6SmOkYTzUkeoMuk0cIJt - BwBwX2yc56BPC0xzNSvojpZNIZtR5LZ9UeL+B1HM0xYDoD0TC7PYtT/1wHg9RHKecfyqTxUkgjX - hTXR+3NUsEkNA4E1FayzV9uajHLavHIJFpcF3OZf5VJgq/U3XgJ6tZSTkBhPHwZqtIeNL4Efq1l - LOyhlUG2u6XBdzm/un/jVh4uIzNbR+j3pua9Q3f69P27mIz2sHpF6bqr79ilwXc5jDkFOa+VpG+ - nu8CchPJxpqs5uFLgSFGf1N3Q8MclSHsD2sKcdZYxKonmtT9xqW4knoDAioruSIfcaaSW7aKMRK - MG9zdiUUDmPIq63Oe13KAo9BEO1ttRFXfnDgtwKjjMhwtPIGG43aIDDqhq9GNt6kLC4+s9Narj1 - VLhsLIYdXIGkdsgMMmjq7IMeF1bLcx/bbjVaWgtlwtCBHk0lABR3r1V4fPZKvC7xOQe6dazkkjo - jI8sMksTpcM3wLkZ28e4+4RkaAzZNyTcthlb/An2Id99ybeqHeTcnGU8Gx8CQZxW37H+ifpPkdM - O//AKLr9mMZRfAluY0WzGdx/tuf2NH4Ft+wR+beKRcRXMbr32jV6aOFaMpRbe3k4s5Bn4f4kBAn - uLeTiiUuqxwtSxqnwW41PDcyVFZhGqWzDskNzHS8btf/xAAuEQABAwIEBAQHAQEAAAAAAAABAAI - DEBEEEjAxICEyQRMUM0AiI0JDUWGBoST/2gAIAQMBAT8B0brMrlXKuVmV/Yk2VydC5CBvrE1Apd - XV1fgB1CaAK9tMHSJtQBE1iwjn83ckzDRt7LI38J0EbtwpcFbmxEW4Qb6J3oeVcLh/rcnPsmm/B - icOJBcb8I30QgjSCPxH2o5l00W4cZHlfm/PAdAup2rgRudDGi8d+EO0XUiidI6wQdHhxlXnR+FH - MyTbgkxDGcl50fhEsxDMt1LE6J1jQUG+i6jfkQctzUEg3Cif4jL0xMvht5VBINwpQJ4M3egoN9F - 21MX9PBguk0xvUODCemaCg348tO1PXgFtxUC6hj8NlqYmPO24qBfkFJ8iC3fgDdEJwUMxidcLw4 - 8QMwXkv2o4GR8EmGY/mvJftZY8O3MppjK651HDgwPQdDHdA4G6W1cDsaxTh3I70kkDBzrjthXfU - 2pge9Z2ZXlCV47qIF8grju1N9a1lgj8RrLEJAvKyXUMIjFcafiCtf2GEFn6GLHzNcC6bA07vCs1 - jmtbQG/FKxjxYp8LRs4ewgNpAn9JTOkIG9CbC6f0lM6QpzeQ+xi6wpegpnSFH0CknQU7pKiPwBS - 9Z9iw2cCp/TK+3/FEfgCvzspegr7f8WH9MKQ3cfYxwPcViTaNfY/ig9MLP/0WU/plA/J/iwpvGp - IHtPsA9zdkHyn6v9QjDjd71NMzJlaoRaMLP87N+1MLsKgmblyuXhhpux6L5R9X+ovc7f2LfD73T - JYG7BSYouFm0jxRaLOT5YHbhO8PtfS//8QALREAAQIDBwMDBAMAAAAAAAAAAQACAxAREiAhMDEy - QQQiQBNCUSMzYXFDUoH/2gAIAQIBAT8ByQCVZVGrtVGqyiCPBAqsAq3qrAoimcG8lE3KKipcBRH - xmNHKJrKmUDROHOUBVGQE4kcNwCdGeeVaKEV45TOo/tdCIpkjASE48b2hAIilyFFsmh0unEZLrk - V9ltZAomt3p31bS43IDaXeqOgyOnPfdc3m+ZCT3BoqUQ6Iar0PynQyNURIBNhEr0FQwzVMcHCok - ZHS+ZCR73/q49tDSUJlTPVM7H0kZHTJEoXNyNquVB0uRd0jI6X7aOs9j/3ce6prKE+huN74lZhF - 2QcRWQT2BworToZoV6/4T4hKJkCmxSF6/wCFV0Q0TGBopMYCuS34udTuyOm3XHfGVrPquJvhUxG - kmMLjPpdTPTLBotdJdTxOE6rVYb8KIbLZ9NzLTEomubgV1IwnDeWFeuxRIlufTDBYBVz45q3I6c - 9ngGIfhGpaSciGS3RB5PHgRdhTdU7WYxTdU7cVC2DwYm0pm4J2qfuMmbgm6p+4qHtHgu2lQt4Xv - T9xVOUzcF71F3lM2jwXxWgKAO9fyf6ou8qz9Kqh7wj9xRx3pkVpHgFoOqLWDhW6DtaocN1q0VEN - XFWfp0UPcFEhutWgrdR3NQaw8INA08E2+E5kR3KZApiZPgVxCayI3lC3zlf/xAAyEAABAwAIAwc - EAgMAAAAAAAABAAIRAxASICEwMVEyQXEEEyIzQGGRQnKBglKhYoPB/9oACAEBAAY/AsnErBpWgX - JaBYtKwPov4jI/kM+y3VTqcqdCrLtcyyNTnWTrlSpOpqgVwMSuL4WpXEVD8Pe7I1CnJjkLthv5U - m7B4bscjkSp3uE1Reja5Oym+RF1oyOouht8XJKtRZavMHwvEMN7k6DcrzB8IOIUi4Ot8VCozwMq - 7ltMLRMDDAqCJCLfiqXcLau6bTC1oMNVB0Vjkbg65dJvKpKIGC9pEoUZoy3Hj5VN6VP6qlogYL2 - kJrTROYAcX7VMjWLg63zihWZ4H1ydEXcuVUO0dXJ0Vr6RWUHTkFtUqCrB8QXlf2oOmwuRxN915X - 9qzoNlArDcm0OVWNQ6ZB6XLR55UfSa21spRiHNk+1XsNTW6uPpGXBVl34NTDW7s9PPck2mO2Vrv - qFN7L2PhPG+OVb6rLflQMyCt2psb1wcHDQqLI6yt3nU1undbNUDPw1yJ1M5+krDs7/yqakfPKqL - 0taSDy3WNBSD0D03qndVFQG6b1TuqZ6F/RM+5O6p/wBxqZ9wTeqf1TOnoXD2TF+yf1U8kz7l+ye - mD29CfFJ2CB2X+z/qerX+UpnVfuid0PFB2PoPEJXlfDVFF2dw/Vd4/BPI3VjnZTCd13jMVFL2dx - /VeV8tXhEeh8IZ+SoNI2NgrTza9qrTDZUCkbHuvEGfg5X/xAAnEAABAwMDAgcBAAAAAAAAAAABA - BEhEDFBUWFxMKEgQIGRscHw0f/aAAgBAQABPyHo2gfRTvuYT2Plb6tZ+FG24lWg48iLm+iJuHYF - 1Yx4ruEDYOwboXF9D1mLn4ocnKaAKERuuCcuCA1HByhO2Pz6hGfxkDcyU4oAXRI+IEiydvQDGcF - GdZ9+kIxI0qnPBgqfpllAGkESa3KMR60oJM8CBAOC4NMZoaNqQhB0Sa3pQkqBF6zknJAcPZRePA - KM7l2q8Gob29HQJwsIZncnQZTmaak2FJgHCI4aG1Zzf40BYvQYjcnRMBnxsAMbIGBojqQcp6DTa - hugODVAE4DW8c+SlkU9j41Qi7ATZFiHEJ+wSE5RhAGgLCxDiOMxrgr3PjSmXRXuqWUNqeLVRgAC - Ey14HNjZHYxLgouIvwoAoHkI1RIcLABCR4zIQBbFEQ3K4RA6ZuRilx6KgsBpN1MnfTKmXQ4Q2uJ - YhqDmjd/+19U3eVoIKdHCG2WXIDUHNPTH5plSXjQSA6ICeSaKgxY5dKgMQALkpvNnBYQDmaInQ4 - qcnYJJQOHI/oKCyPJABNuboD7uEbFN6BVmxwdFGUNgdNlbEv3RTw3pkxRxDxsCww9UYxL90Qa4X - WWCu2OTqgc0D3c9EsXvigAIThmgZUYeJghkoaCIEJsEWb1nHSaVsHSj8hdmawoyMZNNDxomwAVD - 2gm5NGhbh16bYIQOEUIOSoVXYAPOSOHdER0syQ/sg8cZGsAb2rAXFCcAygw2Oo2Bwj+kQjMVXwg - GtHdtv6ief1AKmQkH4RKbAw68pAS8J/E6OI27HrzDtgRgg1sh/EAZkGFovhM9kQxXCdPQAksiGL - G6sLDCENt6bH0gXDs3PXYWzqXHXeE5lcFqNTky7QgYZ1ppbP38iD8tCSzoXeV+ZrT8zVAwjpRAT - rKBuP5Hcox2QvzfSa39lAz3rE3M67V8ohm/soG5PpPRgR28iKGNtcRQFhJKAeKO6X7HFEsTn7oy - LCCEKmNtY8h8klkh5Six3ZLEyhgXm5KMw4yTrX9WR0GCPoZTFwUGN7RyyQcoXwS8iZWu5D9IUXV - kI+kOOQsyKHjkbhoQoMrBE/SML3cg+ul//9oADAMBAAIAAwAAABCSSSSTyzySSSSSSSRMW20NSS - SSSSTSjcd2zSSSSSQRhpJLu4SSSSSJtoWrReqSSSSRhLG1B9OySSSfiLFygAp3+SSS0Je22gRLX - SSSe9RfKgfxOuSSQtpWblyZKVySSepSSC4CZO+SSSy/SeGyLKbSSSTG+j21hJ1SSSSOlUW20Fau - SSSSK9W6m1+oSSSSTyy38W+xySSSST8Wt22fySSSSSSEW23WSSSSSSTFO7ZdSySSSSSSF9X9SSS - SSSSSSPihOSSSSSSSSGj/ACMkkkkkkkgDYWeokkkkkkk5ZzBJ8kkkkkkkhGiBkkkkn//EACgRAQ - ACAAMGBwEBAAAAAAAAAAEAERAhMTBBUWFxoSCBkbHB0fBA4f/aAAgBAwEBPxDYpNZyngu5yBdP4 - Q1R5CAHiQYcxB0bavIgYAkU8ApikvyddpXkQKlkRklviuDgly7J12VC4cWWSvIxM0HeaHbrnAMq - ekHyfb2ji2+TEVJTgODxJQvYu6QLipRiaB9D5+oyolO8DCkeXvErJwHB1TYLRc4od8Vt4UL01ek - CsiWbIJrAxOpp7sBrDig2X41SsHLGd9M2HTSfWJpg2R4zXDTh+lkr9t3/ALdC7Pvmoc+G+JWAXE - 7ZvAhfn3xYKX6z0xvHwNDxmuGkwVD+f0d2KrbgaSkhhv7+uCU6nE0lJMoMmfpr+6eBobHNbDgaV - 4Lcq/ib5byvBvelvt4Gh42tsNIZ0wCxwP7qYoqNZQPXf1wc9Q/OKI1GI4ll5uvpgaR0mi7CqUjp - lDc9SRxhou7+vOGf6/7M5M3ixbwGozTJ5Qz59v8AsbZm95upbjhAvCrQ2O8ISxM8Flc/gl+K4sr - n8OAVgN7sktywSPJ6Yo6Y79ML9q3GLy+bAwC3LZoJTKVTgsz0+cW4ZzgFD9Zeje98sVmevxhmqI - AFG0QSmK6JlXL5xqLqaM0Fed/mcRLjlXKC6IAFG3zmtSvmV4qlwU3fe3sVdTPvw61Oq7rpvl1AF - kqVgoEGyyW9pO0FtX7lcSmtvc52TOwIAE34XHBOwY7bkS5/wuuuRhfwZ2BO3PbDt32jtjgwlzgR - 313+HlIkdTvX+ZQlzgSnMnZvtBv9bor/AHvgKOL7/wAGsINUc4aDvr7i/jlhexr5nYzUn5UEA3X - 9xghZy/g1zU+5D7lIT5y8zvYjAeERyPZf1EEcJufjUI859SH3Nc3/AAjf+QPuI2t+X3GAVz34VA - v3iNrfl9wb/wAwfey//8QAKREBAAIBAgYBAwUBAAAAAAAAAQARMRAhIDBBUWFxoUCBwZGx0eHw8 - f/aAAgBAgEBPxDk4Qm3LPJKjyTfhmUPoVwna3i3iGTvbRcudtdCW7GNFZTwCtadnE27w5lu7ERR - agmVxppYgmzHKsVH0MRalm7r1YZ2F6nnZiYN2FeYIlmiaPo4liuTkd9Bbqgv3f4l5bLGho3/ACG - qaZHbkBbUW9dowKNLPqi3KSpY4dyZP24FvXeJTXGKGLbcN3XY5BVTuauYNNwW+Ng6Z6qLVKloxK - UaWQuzEt3gazhUMvHg8HdjjUglMvtAb2DVAUxPbPAy8buaZ6d7N8Fa6M3BjrPAycYlCGlMOjv3j - UoFsv4uFvYdVAthe0NHMFpM5yNhDH0liRzVoZHEs0ohtZNAq8qSOm45J9XWJTUpHbQ7HxLeK2He - +NFgW1H0dOVjfXQZl92rHJopRjgC6Y315aKyIG9B2XvWr8bRRtEBa1Oy9aACCK3mCjZB8LGDffW - 0GJsXcReNWXXeL5WKW3ntS9JXFUQQPXnrUJhx+Nv3lxKaZUrVm/DMzjIc8WEx+5l9xKa0Fgm4+5 - 8yGvoQX6ob9xM/ufIdN3sINo94a90+F9CbDww3D8vzDXulq7J84n5/nSCg8H0KLe2Ih7Ssf830H - yr/ABpA7fP5iCe8BF0/QYNc/orFVMfadMYSiH6WIGdMRVM/af0VmCV9C+gfP8TZkV/vEB23oDsq - bMCv94j6B8/xyv/EACgQAQABAwIFBAMBAQAAAAAAAAERACExQVEQYXGBkTChscEg0fBA8f/aAAg - BAQABPxD0Z4FsXfFKx/exU6xNkvw1dnsw1OuTZJ8tCx/exVuU7rPj/DdWXg5a1Seo6tYpXdu/lj - kdyzWiT0HRq6sHOY9ZIA13SjKqmeFNG78U8gvRS9B5rkFD1FLzJ1oRJGeDIqGKlsGm6epQudbZv - UYLruUj2N6LgnYfdIKrf8kJUUNljwkCw7DTFjr7N/S0Bixu0Yu7q7G1SeRXMertWeBJg5Rs760q - ylyH7pCeunXi3cPejgU20e5pRkwJEZHhg7DwcWdxb8q1Bi5s7ejqKHUf77oIBrRlkY/fFiDRY/g - +6kIBwUziUSPAa8GyKiN+5QiCMjhOF4ZOGkgdB/vr0BwAK0zkcqyKtkMHThEj91/p7UqqrK5Wm5 - RLxFRugCA24XLizPLwfDhFUGSSmMBhQ4YBO/5wXrKMn7qFdAVJxlI88VhYVPYPupN/wcPF2nZCP - f64xHK1CjgJSM079bv5mBuD34KOa4P25BlbVi/IakOWr1xV1XsUHmaFN+wPL+u8UB2duAHdaMrO - FgehloU17FB5miPiwFm1cnR60ebkmVtweHD2L5/P2v5oyVnc3gOmC6FMR3Z7FBEAboAVPMRI7FS - U6XhtEyUd44BZKA6pZHVY/XapInSosANMtDpZ8UmQeVbAFSRhklIhCGXG+k0E88JqUgUkk6mXU/ - fD2nD2L5/PlQjwEI0R4RlhI8+v3Nc8XC0B96PG+Ztn7gC/SggCZrGc/pKPvhGQRYnpFvupXcDhI - X5XpZ4aARlAwrWibxjhETonVHA2XByjU/P5qMgmKL1uRENEl7RSIo5KdXMnhTZeip0aGSTHAK6y - iAN6eTFpug/l71BZpEUWgQjAZdLp34gJKowFNigAnTAd35eEDzvW5EQdaYFIFnDnPoTdie21bXD - ViG51pTZLnlUQj69xolk6NP2m2lsU9rHdvWS3eAGSzQJ2DKHL/qtic1tFjyAEaurWVJd8qoc88I - KwvZPRAG3jeiBWSSlzYvwg3Efd/dcg8flyDxUm2Z7nC5OWlCgJaQGjxv58eigkJJSmyE7zbhzBq - b0YTkfHGRpGRdhBOTJPLhD1ArLK735cZH5Hu1zBobcBTVyS1bUAABAYD0nMhe1Ebr6Dy4FENSvj - 9cZ1xLKdQF3aXHcbSn4YJdcp7Ul1SZhC60O4pYbDMnApJqT34O/hRR5QPfn6iASViB5dApGI8yz - xDNcMGWzuNI3Da/i7V0LjgjQNvnwHAXhMY1bFaarq/wAf2tCRB64YwezUNrnV9mj8jsofAqR5CL - eurGFoy1qQ8kDwR80AVcyOTLS/9NDQC7goKIRHqVLglaFjKwUrBAYR0oXDVSsE4jUv71OE6t47v - wqJSlpkeuTTEHwR+qCAJWHyV/G3abJkupwdpCIerFARcfcUxyEF8tX+mV5J+/8ADD5i/wCCaNxL - L2EWhJmfsaEGY+xw/nbKQVCAjpeshj2yyfNOR3vJP+GI2Ga6qmObnwmlDRe2Kuhlbyz91/0RRMU - FE3fZSKiEilVK7HyGmyp6OQ/wKAqgGVoDoILli7go/LgdRPlpIROdqfx8iozhfPbE21/FyacRxC - 9mfw0AzMEbAPxSDGCXLFnDQiCMjhPXx0cw1PFJQv292CKVt6kJ3gz5qa4pFXXxmjRLAGGLUaCsx - 3vmiZCBXSbUhOURRC5a4pWXqYLvDjzSUDdvdkisdHZoeP8AA4tUkbb7OB80FFmAPK13ehAXAQDz - 34CIXKyTy2pKLEQ6Xs7VBG++zlfNGL59H//Z dn: cn=gitea,ou=serviceaccounts,ou=users,dc=undercloud,dc=local changetype: add diff --git a/samba-directory/samba-ad-server.yaml b/samba-directory/samba-ad-server.yaml index 101aef7..d76d6b4 100644 --- a/samba-directory/samba-ad-server.yaml +++ b/samba-directory/samba-ad-server.yaml @@ -5,34 +5,126 @@ metadata: namespace: samba-directory data: bootstrap.ldif: | - dn: OU=users,DC=undercloud,DC=local + # ----------------------------- + # OU structure + # ----------------------------- + dn: OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: organizationalUnit + ou: Undercloud + description: Root OU for all Undercloud directory objects + + dn: OU=users,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: organizationalUnit ou: users + description: Human user accounts - dn: OU=serviceaccounts,OU=users,DC=undercloud,DC=local + dn: OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: organizationalUnit ou: serviceaccounts + description: Non-interactive service accounts - dn: OU=groups,DC=undercloud,DC=local + dn: OU=groups,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: organizationalUnit ou: groups + description: Security and role groups - dn: CN=admins,OU=groups,DC=undercloud,DC=local + # ----------------------------- + # Groups (CREATE FIRST) + # ----------------------------- + dn: CN=undercloud-users,OU=groups,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: group - cn: admins - sAMAccountName: admins - description: Test admins group + cn: undercloud-users + sAMAccountName: undercloud-users + description: All standard user accounts groupType: -2147483646 - dn: CN=sebastian,OU=users,DC=undercloud,DC=local + dn: CN=undercloud-administrators,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: undercloud-administrators + sAMAccountName: undercloud-administrators + description: Global administrators for Undercloud + groupType: -2147483646 + + + dn: CN=fileserver-access,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: fileserver-access + sAMAccountName: fileserver-access + description: Access control group for SMB file shares + groupType: -2147483646 + + dn: CN=gitea-admins,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: gitea-admins + sAMAccountName: gitea-admins + description: Administrative access to Gitea + groupType: -2147483646 + + dn: CN=argocd-admins,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: argocd-admins + sAMAccountName: argocd-admins + description: Administrative access to Argo CD + groupType: -2147483646 + + dn: CN=firewall-admins,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: firewall-admins + sAMAccountName: firewall-admins + description: Administrative access to firewall systems + groupType: -2147483646 + + dn: CN=bookstack-admins,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: bookstack-admins + sAMAccountName: bookstack-admins + description: Administrative access to BookStack + groupType: -2147483646 + + dn: CN=nextcloud-admins,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: nextcloud-admins + sAMAccountName: nextcloud-admins + description: Administrative access to Nextcloud + groupType: -2147483646 + + dn: CN=samba-service,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: group + cn: samba-service + sAMAccountName: samba-service + description: Service group for Samba / SMB integration + groupType: -2147483646 + + # ----------------------------- + # Users + # ----------------------------- + dn: CN=sebastian,OU=users,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: person @@ -42,46 +134,240 @@ data: sn: Gurlin givenName: Sebastian displayName: Sebastian Gurlin - name: Sebastian Gurlin sAMAccountName: sebastian userPrincipalName: sebastian@undercloud.local - mail: sebastian@undercloud.local - description: Test user + description: Primary human user account userAccountControl: 512 - dn: CN=shodan,OU=users,DC=undercloud,DC=local + dn: CN=glados,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: glados + sn: Glados + givenName: Glados + displayName: Glados + sAMAccountName: glados + userPrincipalName: glados@undercloud.local + description: Administrative AI persona account + userAccountControl: 512 + + dn: CN=shodan,OU=users,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user cn: shodan - sn: Admin + sn: Shodan givenName: Shodan - displayName: Shodan Admin - name: Shodan Admin + displayName: Shodan sAMAccountName: shodan userPrincipalName: shodan@undercloud.local - mail: shodan@undercloud.local - description: Main admin user + description: Administrative AI persona account userAccountControl: 512 - dn: CN=lam,OU=serviceaccounts,OU=users,DC=undercloud,DC=local + dn: CN=argocd,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local changetype: add objectClass: top objectClass: person objectClass: organizationalPerson objectClass: user - cn: lam + cn: argocd sn: Service - givenName: LAM - displayName: LAM Service Account - name: LAM Service Account - sAMAccountName: lam - userPrincipalName: lam@undercloud.local - mail: lam@undercloud.local - description: LDAP Account Manager service account + givenName: ArgoCD + displayName: ArgoCD + sAMAccountName: argocd + userPrincipalName: argocd@undercloud.local + mail: argocd@undercloud.local + description: ArgoCD service account userAccountControl: 512 + + dn: CN=gitea,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: gitea + sn: Service + givenName: Gitea + displayName: Gitea + sAMAccountName: gitea + userPrincipalName: gitea@undercloud.local + mail: gitea@undercloud.local + description: Gitea service account + userAccountControl: 512 + + dn: CN=firewall,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: firewall + sn: Service + givenName: Firewall + displayName: Firewall + sAMAccountName: firewall + userPrincipalName: firewall@undercloud.local + mail: firewall@undercloud.local + description: Firewall service account + userAccountControl: 512 + + dn: CN=mailserver,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: mailserver + sn: Service + givenName: Mailserver + displayName: Mailserver + sAMAccountName: mailserver + userPrincipalName: mailserver@undercloud.local + mail: mailserver@undercloud.local + description: Mailserver service account + userAccountControl: 512 + + dn: CN=bookstack,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: bookstack + sn: Service + givenName: BookStack + displayName: BookStack + sAMAccountName: bookstack + userPrincipalName: bookstack@undercloud.local + mail: bookstack@undercloud.local + description: BookStack service account + userAccountControl: 512 + + dn: CN=nextcloud,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: nextcloud + sn: Service + givenName: Nextcloud + displayName: Nextcloud + sAMAccountName: nextcloud + userPrincipalName: nextcloud@undercloud.local + mail: nextcloud@undercloud.local + description: Nextcloud service account + userAccountControl: 512 + + dn: CN=jellyfin,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: jellyfin + sn: Service + givenName: Jellyfin + displayName: Jellyfin + sAMAccountName: jellyfin + userPrincipalName: jellyfin@undercloud.local + mail: jellyfin@undercloud.local + description: Jellyfin service account + userAccountControl: 512 + + dn: CN=bastillion,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: bastillion + sn: Service + givenName: Bastillion + displayName: Bastillion + sAMAccountName: bastillion + userPrincipalName: bastillion@undercloud.local + mail: bastillion@undercloud.local + description: Bastillion service account + userAccountControl: 512 + + dn: CN=guacamole,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: guacamole + sn: Service + givenName: Guacamole + displayName: Guacamole + sAMAccountName: guacamole + userPrincipalName: guacamole@undercloud.local + mail: guacamole@undercloud.local + description: Guacamole service account + userAccountControl: 512 + + dn: CN=synapse,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: synapse + sn: Service + givenName: Synapse + displayName: Synapse + sAMAccountName: synapse + userPrincipalName: synapse@undercloud.local + mail: synapse@undercloud.local + description: Synapse service account + userAccountControl: 512 + + dn: CN=samba,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local + changetype: add + objectClass: top + objectClass: person + objectClass: organizationalPerson + objectClass: user + cn: samba + sn: Service + givenName: Samba + displayName: Samba + sAMAccountName: samba + userPrincipalName: samba@undercloud.local + mail: samba@undercloud.local + description: Service account for SMB / CSI access + userAccountControl: 512 + + # ----------------------------- + # Memberships (AFTER CREATION) + # ----------------------------- + dn: CN=undercloud-users,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: modify + add: member + member: CN=sebastian,OU=users,OU=Undercloud,DC=undercloud,DC=local + member: CN=glados,OU=users,OU=Undercloud,DC=undercloud,DC=local + member: CN=shodan,OU=users,OU=Undercloud,DC=undercloud,DC=local + + dn: CN=undercloud-administrators,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: modify + add: member + member: CN=glados,OU=users,OU=Undercloud,DC=undercloud,DC=local + member: CN=shodan,OU=users,OU=Undercloud,DC=undercloud,DC=local + + dn: CN=fileserver-access,OU=groups,OU=Undercloud,DC=undercloud,DC=local + changetype: modify + add: member + member: CN=sebastian,OU=users,OU=Undercloud,DC=undercloud,DC=local + member: CN=glados,OU=users,OU=Undercloud,DC=undercloud,DC=local + member: CN=shodan,OU=users,OU=Undercloud,DC=undercloud,DC=local + member: CN=samba,OU=serviceaccounts,OU=users,OU=Undercloud,DC=undercloud,DC=local --- apiVersion: v1 kind: Service