Fixed ldbm db_appinit to use u_int32_t instead of int (ITS#295)
Fixed lber/io.c Cray T90 specific pointer arithmetic problem (ITS#325)
Added TCP_NODELAY support
+ Change slapd to apply ACL to lastmod attributes
Change slapd.conf default referral
Documentation
Reference Quick Start Guide in README and INSTALL
continue;
}
- /* the lastmod attributes are ignored by ACL checking */
- if ( strcasecmp( a->a_type, "modifiersname" ) == 0 ||
- strcasecmp( a->a_type, "modifytimestamp" ) == 0 ||
- strcasecmp( a->a_type, "creatorsname" ) == 0 ||
- strcasecmp( a->a_type, "createtimestamp" ) == 0 )
- {
- Debug( LDAP_DEBUG_ACL, "LASTMOD attribute: %s access DEFAULT\n",
- a->a_type, 0, 0 );
- acl = NULL;
- } else {
- acl = acl_get_applicable( be, op, e, a->a_type,
- MAXREMATCHES, matches );
- }
+ acl = acl_get_applicable( be, op, e, a->a_type,
+ MAXREMATCHES, matches );
if ( ! acl_access_allowed( acl, be, conn, e,
NULL, op, ACL_READ, edn, matches ) )
index default none
lastmod on
defaultaccess none
-access to attr=objectclass
+
+access to attr=createtimestamp,creatorsname,modifytimestamp,modifiersname
+ by * none
+
+access to attr=objectclass
by * read
+
access to attr=userpassword
by self write
+ by dn="^$$" none
by * compare
-access to dn=".*,ou=Alumni Association,ou=People,o=University of Michigan,c=US"
- by dn=".*,o=University of Michigan,c=US"
- read
+
+access to dn=".*,ou=Alumni Association,ou=People,o=University of Michigan,c=US$$"
+ by dn="^$$" none
+ by dn=".*,o=University of Michigan,c=US$$" read
by * none
+
access to attr=member
by dnattr=member selfwrite
by * read
+
access to filter="objectclass=rfc822mailgroup"
- by dn="Bjorn Jensen,ou=Information Technology Division,ou=People,o=University of Michigan,c=US" write
+ by dn="^cn=Bjorn Jensen,ou=Information Technology Division,ou=People,o=University of Michigan,c=US$$" write
by * read
+
access to * by * read
projects / openldap / commitdiff