[Date Prev][Date Next] [Chronological] [Thread] [Top]

groups/access control config via client api?

looking at the archives and faq-o-matic, is doesn't seem possible to dynamically update and
configure access control lists using OpenLDAP, since slapd.conf is used to configure this. it
however, that some regular expression setup could provide a dynamic framework? 

what i'm wondering is, with say a large scale ASP site, where there are many users, with many
different roles, and priveleges, has anyone come up with a flexible acl model to take into
consideration frequent amounts of:

new group creation
users added to new groups (and removed)
rights modified,added,deleted from certain users in certain groups

i guess what i was hoping for was a client api which would allow for reading,writing,
modifying the acl access right entries in an ldif format (like the aci).




Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail - only $35 
a year!  http://personal.mail.yahoo.com/