[Date Prev][Date Next] [Chronological] [Thread] [Top]

DN Types in draft-ietf-ldapext-acl-model-04.txt

To: ietf-ldapext@netscape.com
Subject: DN Types in draft-ietf-ldapext-acl-model-04.txt
From: Jim Sermersheim <JIMSE@novell.com>
Date: Wed, 13 Oct 1999 11:06:49 -0600
Content-disposition: inline
Resent-date: Wed, 13 Oct 1999 10:11:12 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"Jg4VxB.A.hVG.n0LB4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Section 6.2.2 talks about groups and roles, but I can't find a reference to what exactly constitutes a group or a role.  I could implement this so that a group DN type means that the subjectDN points to a groupOfNames or groupOfUniqueNames, and then I apply the ACL to all the members of that group, but I'm not sure that's the way other implementors will interpret a group.  Same confusion for role.  The terminology section contains definitions for group and role, but it doesn't tell me (in directory terminology) what they are. I'm worried we'll lose interoperability if it's not spelled out.

Jim

Prev by Date: LDAPv3 Rights Family in draft-ietf-ldapext-acl-model-04.txt.
Next by Date: DN Types in draft-ietf-ldapext-acl-model-04.txt (another one)
Index(es):
- Chronological
- Thread