[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL: permissions based on value of attribute

Hi list,

i wondered if it was possible to grant access to an entry, based on
the value of an attribute in that entry.

i need the equivalent of

> access to * by peername="" read
>        by * none

when the ip address is in an attribute of the entry granted access
to. i reckon it can be done with 

> access to * by peername="dnattr=myipaddress" read
>        by * none

but for that the myipaddress attribute needs to be an RDN, right?

Can this kind of access be granted when myipaddress is just an
attribute of the entry?



1A First Alternative rolek@alt001.com    www.alt001.com
Linvision BV         rolek@linvision.com (www|devel).linvision.com