Differences between current version and revision by previous author of OpenLdapAccessControls.
Other diffs: Previous Major Revision, Previous Revision, or view the Annotated Edit History
| Newer page: | version 8 | Last edited on Thursday, July 28, 2005 10:24:31 pm | by MattBrown | |
| Older page: | version 7 | Last edited on Wednesday, June 18, 2003 1:52:53 am | by AndreasRother | Revert |
@@ -42,9 +42,8 @@
uniqueMember: cn=alice,ou=Accounts,$BASEDN
uniqueMember: cn=James Curtis,ou=Accounts,$BASEDN
uniqueMember: cn=Perry Lorier,ou=Accounts,$BASEDN
Adding/Removing people from the uniqueMember relation will grant/revoke their access.
-Note: I got an Object class violation error using the ou=!AdminUsers notation. Changing ou=!AdminUsers to cn=!AdminUsers helped here :-)
by dnattr=owner write
This checks to see if the user doing the access appears in the "owner" attribute of the object being modified. For instance, if cn=charlie,ou=Accounts,$BASEDN wanted to access cn=bob,ou=Accounts,$BASEDN's foo attribute, then this sould check to see if cn=charlie,ou=Accounts,$BASEDN appeared in cn=bob,ou=Accounts,$BASEDN's owner attribute first.
