[Date Prev][Date Next] [Chronological] [Thread] [Top]

working whith sets

To: openldap-software@OpenLDAP.org
Subject: working whith sets
From: "José M. Fandiño" <ldap@fadesa.es>
Date: Thu, 17 Mar 2005 12:40:19 +0100
Organization: Inmobiliaria FADESA

Dear friends,

How I can permit write access to entries with an attribute 
value by others with other attribute value.
 
i.e:

permit write access to entries with a "staff" role by
entries with an "admin" role.

access to dn.subtree="ou=people,dc=domain"
   by set="( this/personRole & [staff]  ) & ( user/personRole & ([admin]|[bofh]) )" write

I did several tests but none of them worked.

is it possible with sets?

Thank you.
-- 
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GCS/IT d- s+:+() a C+++ UBL+++$ P+ L+++ E--- W++ N+ o++ K- w---
O+ M+ V- PS+ PE+ Y++ PGP+>+++ t+ 5 X+$ R- tv-- b+++ DI D++>+++
G++ e- h+(++) !r !z
------END GEEK CODE BLOCK------

Follow-Ups:
- Re: working whith sets
  - From: Lee Jensen <lee_jensen@sento.com>

Prev by Date: Re: ldap slave master relationship
Next by Date: Re: Distributed LDAP
Index(es):
- Chronological
- Thread