[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL regex broken upgrading from 2.2.14 to 2.2.28

Hi All. Thank you for reading this.

Perhaps there is a tidbit I missed somewhere in the release notes or list discussions to explain this, but I am having a problem in 2.2.28 with a very simple regex ACL rule that worked correctly in version 2.2.14:

access to dn.subtree="ou=personal_addressbook,dc=enc,dc=edu"
      by dn="cn=adm,ou=admin,ou=sys,dc=enc,dc=edu" write
      by * break
access to dn.regex="^.*ou=(.)(.*),ou=personal_addressbook,dc=enc,dc=edu"
      by dn="ueid=$1$2,ou=$1,ou=people,dc=enc,dc=edu" write
      by * none

FYI, my user DNs look like "ueid=4asgxek3ci,ou=4,ou=people,dc=enc,dc=edu", with the "ou=4" part corresponding to the first character of the "ueid" attribute. Thus, this person's addressbook entry would have a DN - "ou=4asgxek3ci,ou=personal_addressbook,dc=enc,dc=edu".

Using the ACL above taken from my 2.2.14 installation, there is no access at all, but tweaking this part...


...in this way...


...allows read access but no write.

Thanks in advance for any insight.


Ben Sommer
Senior Technology Officer
Eastern Nazarene College
23 East Elm Ave
Quincy, MA 02170
(617) 745-3817