[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Authenticated users can create new entries but then only creator can modify entry

To: Emmanuel Dreyfus <manu@netbsd.org>
Subject: Re: Authenticated users can create new entries but then only creator can modify entry
From: Pierangelo Masarati <ando@sys-net.it>
Date: Wed, 6 Aug 2008 10:16:14 +0200 (CEST)
Cc: openldap-software@openldap.org
In-reply-to: <20080806080808.GK19324@NetBSD.org>

----- "Emmanuel Dreyfus" <manu@netbsd.org> wrote:

> On Wed, Aug 06, 2008 at 09:38:52AM +0200, Pierangelo Masarati wrote:
> > Did you read slapd.access(5)?  Did you read the requirements for the
> add and modify operations?  You need to add access to "entry" to allow
> entry addition; you need to add access to attributes to allow their
> modification.  
> 
> Speaking about that: how to allow entry creation while maintaining 
> constraints on what is being added? ie: if you want users to add
> entries, 
> but not with a specific attribute set?

Currently, it's not possible.  See <http://www.openldap.org/its?findid=4556> for details and a roadmap.

p.


Ing. Pierangelo Masarati
OpenLDAP Core Team

SysNet s.r.l.
via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
-----------------------------------
Office:  +39 02 23998309
Mobile:  +39 333 4963172
Fax:     +39 0382 476497
Email:   ando@sys-net.it
-----------------------------------

Follow-Ups:
- Re: Authenticated users can create new entries but then only creator can modify entry
  - From: Michael StrÃder <michael@stroeder.com>

References:
- Re: Authenticated users can create new entries but then only creator can modify entry
  - From: Emmanuel Dreyfus <manu@netbsd.org>

Prev by Date: Re: Authenticated users can create new entries but then only creator can modify entry
Next by Date: Re: Authenticated users can create new entries but then only creator can modify entry
Index(es):
- Chronological
- Thread