[Date Prev][Date Next]
Re: Wishes for set ACLs
It seems that this is not the main goal of the standard ACL model to
introduce such complexity. Maybe another pluggable model would be more
adapted to specify rights according to a more complex relationship model.
For example, one alternate model is implemented has a backend allowing
the specification of relationship available on
http://aacls.sourceforge.net/ (integration as an ACL plugin has been
initiated but not finished).
Hallvard B Furuseth a écrit :
Kurt D. Zeilenga writes:
At 07:36 AM 3/17/2005, Hallvard B Furuseth wrote:
I've got a few wishes for set acls.
I have one...
1) avoid deadlock conditions
Ouch. When is that? Is it bad enough that one should not yet use
sets after all?
Oh, yet another:
Expand $<digit> after parsing the set instead of before parsing, so
e.g. [$1] doesn't break if $1 contains a ']'. That probably means
$<digit> can only be used in  and in the attribute name after '/'.
At the same time, one could parse the set when the config file is
read instead of when the access statement is evaluated.
Chef de projet / Expert Annuaires LDAP
LINAGORA SA - http://www.linagora.com
Tél.: +33(0)1 58 18 68 28 - Fax : +33(0)1 58 18 68 29
Portable : +33 (0) 6 64 86 43 01