ITS#2573 dynamic group support

author Howard Chu <hyc@openldap.org>

Sun, 21 Sep 2003 10:45:57 +0000 (10:45 +0000)

committer Howard Chu <hyc@openldap.org>

Sun, 21 Sep 2003 10:45:57 +0000 (10:45 +0000)
author Howard Chu <hyc@openldap.org>
Sun, 21 Sep 2003 10:45:57 +0000 (10:45 +0000)
committer Howard Chu <hyc@openldap.org>
Sun, 21 Sep 2003 10:45:57 +0000 (10:45 +0000)
diff --git a/doc/man/man5/slapd.access.5 b/doc/man/man5/slapd.access.5

index 4134cecab31cc4c95e1aa460444e96fb14bd55d5..b04758f511d254f9c6fa11c22347b51c9963dfba 100644 (file)
--- a/doc/man/man5/slapd.access.5
+++ b/doc/man/man5/slapd.access.5
@@ -221,26 +221,26 @@ The statement
  .B dnattr=<attrname>
  means that access is granted to requests whose DN is listed in the
  entry being accessed under the 
-.B attrname
+.B <attrname>
  attribute.
  .LP
  The statement
  .B group=<group>
  means that access is granted to requests whose DN is listed
  in the group entry whose DN is given by
-.BR group .
+.BR <group> .
  The optional parameters
-.B objectclass
+.B <objectclass>
  and
-.B attrname
+.B <attrname>
  define the objectClass and the member attributeType of the group entry.
  The optional style qualifier
-.B style
+.B <style>
  can be
  .BR regex ,
  which means that
-.B pattern
-will be expanded accorging to regex (7), and
+.B <group>
+will be expanded according to regex (7), and
  .B base
  or
  .B exact
@@ -248,6 +248,15 @@ or
  .BR base ),
  which means that exact match will be used.
  .LP
+For static groups, the specified attributeType must have
+.B DistinguishedName
+or
+.B NameAndOptionalUID
+syntax. For dynamic groups the attributeType must
+be a subtype of the
+.B labeledURI
+attributeType.
+.LP
  The statements
  .BR peername=<peername> ,
  .BR sockname=<sockname> ,
author	Howard Chu <hyc@openldap.org>
	Sun, 21 Sep 2003 10:45:57 +0000 (10:45 +0000)
committer	Howard Chu <hyc@openldap.org>
	Sun, 21 Sep 2003 10:45:57 +0000 (10:45 +0000)