[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#3849) support for posixGroup use in ACLs

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#3849) support for posixGroup use in ACLs
From: ando@sys-net.it
Date: Wed, 17 Aug 2005 12:38:24 GMT

I've committed to HEAD an implementation of posixGroup access via dynacl. 
It's nothing more than an example of how dynacl works, I wouldn't use it
in a production environemnt because it's definitely likely to behave
horribly (not much worse than sets, though, plus there's no caching).  I
also note that roughly the same result could be obtained with sets
themselves doing something like

access to *
        by set="user/uidNumber & [cn=group]/memberUid" read

You can find the code in "contrib/slapd-modules/acl/" via CVS.

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497

Prev by Date: Re: (ITS#3945) segfault in 2.2.26
Next by Date: (ITS#3946) PPolicy Overlay - Problem with password reset
Index(es):
- Chronological
- Thread