[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL group recursion feature...


I'm thinking of modifying LDAP to support recursion through groups so if
you're in an ACL and you have something like the following:
access to dn.exact="ou=foo,dc=directory"
  by group.recurse="cn=group,dc=directory" read

So say you have in your cn=group,dc=directory another group like group1
and it contains users. Those users would have read access to
ou=foo,dc=directory as well.

I'm curious if anyone is presently working on a feature like this. This
is the first time I've done any development in LDAP so any pointers etc
would be rather helpful. 

What is everyone's thoughts would this kind of a feature be useful?