[Date Prev][Date Next] [Chronological] [Thread] [Top]

Access per Attribute Definition based on ACL

To: openldap-software@OpenLDAP.org
Subject: Access per Attribute Definition based on ACL
From: "Gary C. New" <garycnew@yahoo.com>
Date: Wed, 11 May 2005 03:23:08 -0600
User-agent: Mozilla/5.0 (X11; U; Linux i586; en-US; rv:1.6) Gecko/20040115

Is it possible to construct an ACL to allow/disallow a specific attribute from being access by another user based on a subsequent attribute in the same entry?

Example:

cn=david,dc=example,dc=net

Views Entry

cn=sam,dc=example,dc=net
postalAddress: 12 Sampson St
hidePostalAddress: TRUE

ACL prevents David from viewing Sam's postalAddress.

Thank you for the assistance.

Respectfully,


Gary

Follow-Ups:
- Re: Access per Attribute Definition based on ACL
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
- Re: Access per Attribute Definition based on ACL
  - From: Pierangelo Masarati <ando@sys-net.it>

Prev by Date: Re: GNU TLS, Slapd 2.1.30-3 on Debian Sarge
Next by Date: Re: Searching without matching derived attributes
Index(es):
- Chronological
- Thread