[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Access control in slapd.conf
> Hello.
>
> I would like to do a specific task, but i don't now if it's possible...
>
> I have a mailboxes object.
> In my schema, there is a mailboxOwner Attribute which show the dn of the
> Mailbox Owner.
> I would that this user could modify the attributes of all his mailboxes
> (mailboxes where mailboxOwner DN is his dn)...
>
> The tree look like this
> dc=foo,dc=bar
> |
> ---- ou=domain1.com
> |------ou=mail
> | |---uid=mailbox1,ou=mail,ou=domain1.com,dc=foo,dc=bar
> | | ----- ...
> | | ----- mailboxOwner=uid=smith,ou=people,\
> | |
> ou=domain1.com,dc=foo,dc=bar
> |
> |------ou=people
> |---uid=smith,ou=people,ou=domain1.com,dc=foo,dc=bar
>
>
> Is it possible to give the owner the rights to modify all the attributes
> of
> his mailboxes using only ACL in slapd.conf?
access to <mailbox>
by dnattr=mailboxowner write
by ...
See slapd.access(5) for details.
p.
Ing. Pierangelo Masarati
Responsabile Open Solution
OpenLDAP Core Team
SysNet s.n.c.
Via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
------------------------------------------
Office: +39.02.23998309
Mobile: +39.333.4963172
Email: pierangelo.masarati@sys-net.it
------------------------------------------