[Date Prev][Date Next] [Chronological] [Thread] [Top]

read ACL working but write ACL not

To: openldap-software@openldap.org
Subject: read ACL working but write ACL not
From: JOYDEEP <j.bakshi@unlimitedmail.org>
Date: Fri, 06 Jul 2007 15:12:48 +0530
User-agent: Thunderbird 1.5 (X11/20060317)

Dear list,

Please see below my LDAP structure

base DN --->  *dc=suse,dc=ldap
virtual domain   ---> **virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap*
*user DN -->**ou=users,virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap
group DN --> **ou=groups,virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap
**contacts DN --->**
ou=contacts,ou=contacts,virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap
personal contacts
-->**ou=personal,ou=contacts,ou=contacts,virtualDomain=kolkata.opendingo.com,dc=suse,dc=ldap


here is my ACL to read and write personal addressbook. the read ACL is
working here but the write ACL is not working.

*################ personal ACL #######################
access to
dn.regex="cn=([^,]+),ou=personal,ou=contacts,ou=contacts,virtualDomain=([^,]+),dc=suse,dc=ldap$"
  by dn.exact,expand="uid=$1,ou=users,virtualDomain=$2,dc=suse,dc=ldap" 
read
  by * none

access to
dn.regex="cn=([^,]+),ou=personal,ou=contacts,,ou=contactsvirtualDomain=([^,]+),dc=suse,dc=ldap$"
  by dn.regex="uid=$1,ou=users,virtualDomain=$2,dc=suse,dc=ldap"  write
  by * none
#################################################

the log reports ****tag=105 err=50 text=no write access to parent**********
could any one suggest how to solve the problem ?
thanks

Follow-Ups:
- Re: read ACL working but write ACL not
  - From: "Dieter Kluenter" <dieter@dkluenter.de>

Prev by Date: Re: how to delete entire base dn ?
Next by Date: Re: How to search for all entries that have modified themselves
Index(es):
- Chronological
- Thread