[Kolab-devel] enlargement of kolab ldap schema for asp service
Thomas Börnert
tb at tbits.net
Fri Jul 27 01:59:37 CEST 2007
> We could think about making a subtree within the private OID space,
> which we could reserve for experimental attributes.
> On the other hand, maybe it might be easier to just apply for your own
> private OID space for experiments. This is fairly simple as far as I
> remember.
>
> Thanks for the summaries and the comments, I am still making up my mind
> about how to do this all best.
>
> What strikes me as important is that some of the measures should be
> controlled in the underlying software, not the web-frontend. In the current
> design it would be allowed for the customers to connect to the ldap server
> itself, give their credentail and just change the attribute they can.
ok, right ..... in the first step i would not allow ldap access.
imho i think the customer need only access to the adressbook,
not to the domain manager object and not to the domain object, right ?
>
> So how with your web-cyradm would you enforce the options?
web-cyradm don't use ldap, it uses mysql.
Thomas
More information about the devel
mailing list