steffen: server/kolabd/kolabd/templates slapd.access.template, NONE, 1.1 slapd.conf.template, 1.12, 1.13

cvs at intevation.de cvs at intevation.de
Wed Jul 6 12:42:38 CEST 2005 

Author: steffen

Update of /kolabrepository/server/kolabd/kolabd/templates
In directory doto:/tmp/cvs-serv11222/kolabd/templates

Modified Files:
	slapd.conf.template 
Added Files:
	slapd.access.template 
Log Message:
Template for domain-maintainer related LDAP ACLs.

--- NEW FILE: slapd.access.template ---
##  Copyright (c) 2005 Klaraelvdalens Datakonsult AB
##     Written by Steffen Hansen <steffen at klaralvdalens-datakonsult.se>
##
## This program is Free Software under the GNU General Public License (>=v2).
## Read the file COPYING that comes with this packages for details.

# Domain ACL statements for inclusion in slapd.conf


Index: slapd.conf.template
===================================================================
RCS file: /kolabrepository/server/kolabd/kolabd/templates/slapd.conf.template,v
retrieving revision 1.12
retrieving revision 1.13
diff -u -d -r1.12 -r1.13
--- slapd.conf.template	5 Jul 2005 10:40:13 -0000	1.12
+++ slapd.conf.template	6 Jul 2005 10:42:36 -0000	1.13
@@ -67,21 +67,14 @@
 index   kolabHomeServer pres,eq
 index   member          pres,eq
 
-## Domain test
-#access to filter=(&(objectClass=kolabInetOrgPerson)(mail=*@<DOMAIN>)(|(!(alias=*))(alias=*@<DOMAIN>)))
-#        by group/kolabGroupOfNames="cn=<DOMAINS>,cn=domains,cn=internal,@@@base_dn@@@" write
-#        by * continue
+include @l_prefix@/etc/openldap/slapd.access
 
-#access to dn="cn=domains,cn=internal,@@@base_dn@@@"
-#        by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
-#        by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" write
-#        by dn="cn=nobody,cn=internal,@@@base_dn@@@" read
-#        by group/kolabGroupOfNames="cn=<DOMAINS>,cn=domains,@@@base_dn@@@" read
-#        by * search stop
+access to dn="@@@base_dn@@@" attrs=children
+	by group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,@@@base_dn@@@" write
 
-#access to dn.subtree="cn=Monitor"
-#        by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
-#        by * none stop
+access to dn.subtree="cn=Monitor"
+        by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
+        by * none stop
 
 access to attr=userPassword
    	by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" =wx
@@ -164,8 +157,9 @@
 access to dn="k=kolab,@@@base_dn@@@"
 	by group/kolabGroupOfNames="cn=admin,cn=internal,@@@base_dn@@@" write
 	by group/kolabGroupOfNames="cn=maintainer,cn=internal,@@@base_dn@@@" read
+	by group/kolabGroupOfNames="cn=domain-maintainer,cn=internal,@@@base_dn@@@" read
 	by dn="cn=nobody,cn=internal,@@@base_dn@@@" read 
-	by * none stop
+	by * none stop	
 
 access to * 
         by self write

More information about the commits mailing list