[Date Prev][Date Next] [Chronological] [Thread] [Top]

dn.regex expansion in ACL by clause (ITS#1285)

Full_Name: Wouter Coene
Version: 2.0.11
OS: Linux (Debian 2.2)
Submission from: (NULL) (

In an ACL, a dn.regex directive in the 'by' clause is not expanded with the
obtained in a regular expression 'to' clause, contrary to a group directive.


	access to dn="cn=[^,]*,ou=([^,]*),o=root"
		by dn="ou=$1,o=root" write

The solution would be to add expansion code to the ACL code in
but since I'm no OpenLDAP expert, I'd rather not touch the code.

Is someone planning to implement this?