[Date Prev][Date Next]
How to express an access controle clause
I have a question about expressing an access control clause.
In my directory, I have two branches:
- administratives structures
People are all on the same level, children of an entry which
looks like "ou=People,dc=mydomain,dc=org". People entries have
an attribute, "adminattach", which contains the dn of the
administrative structure, on which they depend.
Administratives structures are hierarchically
organizied. Administratives structures have an attribute,
"responsable", which contains the dn of the responsable of the
The question is: how to espressed, in the ACL syntax, that
every people entry can be modified by the people responsable
of the administrative structure on which they depend?
What: attribute "responsable" of the entry contained in the
"adminattach" attribute the "who" entry.
Help is welcome!