Hi,
Back in 2001, Pierangelo answered that OL can not have an ACL based on the value of an attribute of a bound user.
http://www.openldap.org/lists/openldap-software/200108/msg00331.html
Has anything changed where this might be possible or anyone have some good work-arounds? Something like:
dn: uid=user,dc=me,dc=com <user stuff...> myattribute: special
Then an ACL of:
access to * by (anyone with myattribute=special) write
--Quanah
-- Quanah Gibson-Mount Principal Software Developer ITSS/Shared Services Stanford University GnuPG Public Key: http://www.stanford.edu/~quanah/pgp.html
"These censorship operations against schools and libraries are stronger than ever in the present religio-political climate. They often focus on fantasy and sf books, which foster that deadly enemy to bigotry and blind faith, the imagination." -- Ursula K. Le Guin