From e21de006633d21e110437dade6ed100390ec393a Mon Sep 17 00:00:00 2001
From: revol-xut <revol-xut@protonmail.com>
Date: Fri, 2 Jun 2023 16:28:21 +0200
Subject: [PATCH] adjust permissions

---
 modules/ldap.nix | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/modules/ldap.nix b/modules/ldap.nix
index 977647a..0ea4c3e 100644
--- a/modules/ldap.nix
+++ b/modules/ldap.nix
@@ -17,12 +17,18 @@ in
     "portunus/users/search-password" = {
       owner = "${portunusUser}";
       group = "${portunusGroup}";
+      mode = "0440";
     };
     "dex/environment" = {
       owner = config.systemd.services.dex.serviceConfig.User;
       group = "dex";
     };
+    "matrix_ldap_search" = {
+      key = "portunus/users/search-password";
+      owner = config.systemd.services.nslcd.serviceConfig.User;
+    };
   };
+  
 
   services.portunus = {
     enable = true;