From e22d17dca6ed27c358f7e2cb50baa4d981bedc97 Mon Sep 17 00:00:00 2001
From: xeoneox <xeoneox@users.noreply.github.com>
Date: Fri, 21 Feb 2025 10:02:08 -0500
Subject: [PATCH] example_configs: reduce privileges for stalwart bind user

Update instructions for read_only bind
---
 example_configs/stalwart.md | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/example_configs/stalwart.md b/example_configs/stalwart.md
index 866ade0..24c7f4c 100644
--- a/example_configs/stalwart.md
+++ b/example_configs/stalwart.md
@@ -1,13 +1,12 @@
 # Stalwart Mailserver
 
-[Stalwart-mailserver](https://github.com/stalwartlabs/mail-server) is a Production-ready full-stack but simple mail server (SMTP, IMAP, LDAP, Antispam, Antivirus, etc.) written in Rust.
+[Stalwart-mailserver](https://github.com/stalwartlabs/mail-server) is a Production-ready full-stack but simple mail server (SMTP, JMAP, IMAP, Sieve, LDAP, Antispam, Antivirus, etc.) written in Rust.
 
 To integrate with LLDAP, 
 
-1. Add manager user, & make sure to add to lldap_admin group for read/write permission
-   (TODO: Check if lldap_strict_readonly is enough)
+1. Create "manager" user, & make sure to add it to lldap_strict_readonly group for bind permission
    
-3. Create mail group, add users requiring email access 
+3. Create "mail" group, & add users requiring email access 
 
 4. Ensure you correctly add the following ldap settings to your Stalwart `config.toml`.
 
@@ -32,7 +31,7 @@ To integrate with LLDAP,
         0 = "displayName"
     [directory.ldap.bind]
       dn = "uid=manager,ou=people,dc=example,dc=org"
-      secret = "<YOUR_SECRET>"
+      secret = "<YOUR_MANAGER_PASSWORD>"
       [directory.ldap.bind.auth]
         dn = "uid=?,ou=people,dc=example,dc=org"
         enable = true