[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL: permissions based on value of attribute

To: openldap-software@OpenLDAP.org
Subject: ACL: permissions based on value of attribute
From: Roel van Meer <rolek@linvision.com>
Date: Tue, 20 Nov 2001 16:59:49 +0100
Organization: Linvision

Hi list,

i wondered if it was possible to grant access to an entry, based on
the value of an attribute in that entry.

i need the equivalent of

> access to * by peername="172.16.2.4" read
>        by * none

when the ip address is in an attribute of the entry granted access
to. i reckon it can be done with 

> access to * by peername="dnattr=myipaddress" read
>        by * none

but for that the myipaddress attribute needs to be an RDN, right?

Can this kind of access be granted when myipaddress is just an
attribute of the entry?

Regards,

rolek

--
1A First Alternative rolek@alt001.com    www.alt001.com
Linvision BV         rolek@linvision.com (www|devel).linvision.com
--

Prev by Date: ldif
Next by Date: Re: ldif
Index(es):
- Chronological
- Thread