[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
AW: Regex access problem
> -----Ursprüngliche Nachricht-----
> Von: Kurt D. Zeilenga [mailto:Kurt@OpenLDAP.org]
> Gesendet: Donnerstag, 6. Mai 2004 19:43
> An: Karlheinz Toni
> Cc: openldap-software@OpenLDAP.org
> Betreff: Re: Regex access problem
>
> At 06:25 AM 5/6/2004, Karlheinz Toni wrote:
> >Hi there,
> >
> >my ldap has the following structure
> >
> >dc=de
> >---dc=test
> >------ou=users
> >---------cn=peter
> >---------cn=charly
> >---------cn=juergen
> >------ou=contexts
> >---------ou=peter
> >---------ou=charly
> >---------ou=juergen
> >
> >I wonder how to allow each entry in the users-hierarchy write access
> >only the according entry in the contexts-hierarchs?
> >
> >I tried:
> >
> >access to dn.regex="^cn=.*,ou=users,REST$" attrs=entry,children
> > by dn.regex="^ou=$1,ou=contexts,REST$" write
>
> It seems you have your subject and target reversed. Maybe something
> like this...
> access to dn.regex="^([^,]+,)*cn=([^,]+),ou=contexts,REST$"
> by dn.regex="^ou=$2,ou=users,REST$" write
>
> Kurt
Hi there,
of course Kurt was right, I mixed the two up.. :(. But it still does not
work. I tried your suggestion and
access to dn.regex="^ou=.+, ou=contexts,REST$" attrs=entry,children
by dn.regex="^cn=$1, ou=users,REST$" write
but none seems to work...
Any other ideas? I really would appreciate any help very much.
Sincerely
Charly