connection.url = ${ldap.url} user.base.dn = ou=users,dc=fon user.filter = (uid=%u) user.search.subtree = true role.base.dn = ou=groups,dc=fon role.filter = (uniqueMember=uid=%u) role.name.attribute = cn role.search.subtree = true authentication = simple