Am 28.07.2009 um 01:04 schrieb Howard Chu:
Ok, for example, i have two objects like that:
Now i would like to add some kind of acl to the cn=person (the objectClass "acl" is not real, but it should demonstrate, what i need):
So if the user "user1" binds successfully he has the permission to modify the entry. When a new entry is createt or a entry is deletet, i also need write access to the parent object in the tree, so i have to expand the ou=container object too in some way to allow the operation.
It should be possible to assign the right to add, modify and delete dynamically to an other ldap object, e.g. a user object.
Thanks a lot
with kind regards