lib/Auth

Aleksander Machniak machniak at kolabsys.com
Mon Dec 16 12:39:37 CET 2013


 lib/Auth/LDAP.php |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

New commits:
commit a2ed69552bf9e45f91f1ef778e55bdcdcea783c0
Author: Aleksander Machniak <alec at alec.pl>
Date:   Mon Dec 16 12:38:31 2013 +0100

    Fix self-write ACL for new domains to fix password changes by self (Bug #2678)

diff --git a/lib/Auth/LDAP.php b/lib/Auth/LDAP.php
index 1d4531a..7736fd3 100644
--- a/lib/Auth/LDAP.php
+++ b/lib/Auth/LDAP.php
@@ -361,7 +361,7 @@ class LDAP extends Net_LDAP3 {
             ),
             'aci' => array(
                 // Self-modification
-                "(targetattr = \"" . implode(" || ", $self_attrs) . "\")(version 3.0; acl \"Enable self write for common attributes\"; allow (write) userdn=\"ldap:///self\";)",
+                "(targetattr = \"" . implode(" || ", $self_attrs) . "\")(version 3.0; acl \"Enable self write for common attributes\"; allow (read,compare,search,write) userdn=\"ldap:///self\";)",
                 // Directory Administrators
                 "(targetattr = \"*\")(version 3.0; acl \"Directory Administrators Group\"; allow (all) (groupdn=\"ldap:///cn=Directory Administrators," . $inetdomainbasedn . "\" or roledn=\"ldap:///cn=kolab-admin," . $inetdomainbasedn . "\");)",
                 // Configuration Administrators




More information about the commits mailing list