[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Address book authntication

On Mon, 11 Nov 2002, Asbjørn Eliassen wrote:

> On Mon, 11 Nov 2002, Kannan R wrote:
> > This is the access list I have specified.
> > 
> >                access to dn="uid=*,o=Sifyaddress" by users read
> >                access to dn="uid=*,o=Sifyaddress" by self write
> I use this one on the by clause:
> by dn.regex="cn=[^,]+,ou=admins,ou=brukere,dc=funn,dc=no" write
> Guess you have to make an entry like this one:
> access to dn.regex="uid=*,o=Sifyaddress" by self write
> access to dn.regex="uid=*,o=Sifyaddress" by users read

Uhh... some typos there...
I meant something like this:
	access to dn.regex="uid=[^,]+,o=Sifyaddress" by self write
	access to dn.regex="uid=[^,]+,o=Sifyaddress" by users read

Another alternative that I saw in Adam Williams ldapv3.pdf are:
A rule can be constructed to match this context 
expressions.  For example:
	access to dn="(*.),ou=Customers,dc=Foo,dc=Com)" by dn="^$$" none

Asbjørn Eliassen
Fiolstien 1B-6   
8515 Narvik