[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Address book authntication

To: Kannan R <Kannan_R@Sifycorp.com>
Subject: Re: Address book authntication
From: Asbjørn Eliassen <ahel@hinux.hin.no>
Date: Mon, 11 Nov 2002 09:15:56 +0100 (CET)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <Pine.LNX.4.44.0211110817280.29849-100000@hinux.hin.no>

On Mon, 11 Nov 2002, Asbjørn Eliassen wrote:

> On Mon, 11 Nov 2002, Kannan R wrote:
> 
> > This is the access list I have specified.
> > 
> >                access to dn="uid=*,o=Sifyaddress" by users read
> >                access to dn="uid=*,o=Sifyaddress" by self write
> 
> I use this one on the by clause:
> by dn.regex="cn=[^,]+,ou=admins,ou=brukere,dc=funn,dc=no" write
> 
> Guess you have to make an entry like this one:
> access to dn.regex="uid=*,o=Sifyaddress" by self write
> access to dn.regex="uid=*,o=Sifyaddress" by users read

Uhh... some typos there...
I meant something like this:
	access to dn.regex="uid=[^,]+,o=Sifyaddress" by self write
	access to dn.regex="uid=[^,]+,o=Sifyaddress" by users read

Another alternative that I saw in Adam Williams ldapv3.pdf are:
A rule can be constructed to match this context 
expressions.  For example:
	access to dn="(*.),ou=Customers,dc=Foo,dc=Com)" by dn="^$$" none


-- 
Asbjørn Eliassen
Fiolstien 1B-6   
8515 Narvik

References:
- Re: Address book authntication
  - From: Asbjørn Eliassen <ahel@hinux.hin.no>

Prev by Date: Re: Address book authntication
Next by Date: Re: question about ldap performance
Index(es):
- Chronological
- Thread