[Date Prev][Date Next] [Chronological] [Thread] [Top]

ldapACI permissions for ldap_modify (write)

To: ietf-ldapext-acm@OpenLDAP.org
Subject: ldapACI permissions for ldap_modify (write)
From: Ellen Stokes <stokes@austin.ibm.com>
Date: Mon, 17 Apr 2000 22:20:05 -0500

From last Tues's conference call we all agreed that the permissions
to reflect the ability to write (ldap_modify) data needs to reflect the
ldap_modify sub-operations of add, delete, and replace.  These new
permissions will still remain single alphabetic characters.

Since 'a' and 'd' are already taken, here's the proposed characters
from one of my previous emails on this subject:

modify / write (add)  = 'w'
modify / del = 'o'
modify / replace = 'o' + 'w'

The write permission is broken into two permissions (add and delete)
where replace requires both add and delete.  Proposed permissions for
this change are 'w' for write/add and 'o' for write/delete (obliterate)
where write/replace operation requires both w and o to be set.

Ellen

Follow-Ups:
- Re: ldapACI permissions for ldap_modify (write)
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>

Prev by Date: Re: attirbute collections
Next by Date: Fwd: agenda and conference call info for Tues Apr 18
Index(es):
- Chronological
- Thread