Pierangelo Masarati
006745430e
allow "expand" style in peername, sockname, sockurl as well; more sanity checks
2004-03-09 19:44:14 +00:00
Pierangelo Masarati
042869366d
use "expand" instead of "regex" for group ACLs that allow substring expansion, preserving backwards compatibility; add sanity checks
2004-03-09 16:33:05 +00:00
Pierangelo Masarati
f5a9f62578
clarify that's useless to give write privileges to the roodn of a database...
2004-01-14 23:11:48 +00:00
Kurt Zeilenga
3c598e89fb
Happy new year
2004-01-01 19:15:16 +00:00
Pierangelo Masarati
8e89944abc
for consistency, always allow 'onelevel' as an alias for 'one' in dnstyle
2003-12-20 15:29:05 +00:00
Kurt Zeilenga
aabcce3e58
Document +0
2003-12-19 05:06:51 +00:00
Pierangelo Masarati
ca52621c1b
some notes on access required by proxyAuthz control;
...
note that other controls may need different access
privileges via, e.g., backend_attribute() (syncrepl?)
2003-12-18 00:27:01 +00:00
Kurt Zeilenga
c4c6a38a0b
Dont mention bare oc in list.
2003-12-17 17:48:56 +00:00
Kurt Zeilenga
30a1ff596d
s/+/@/ in OC attr lists
2003-12-17 17:36:41 +00:00
Pierangelo Masarati
947f41832e
more clarifications on dnstyle usage
2003-12-16 11:20:59 +00:00
Pierangelo Masarati
ee34f3fb64
add to 'val[.<style>=<value>' ACLs special match styles for DN-valued attributes; add negated objectClass to attribute name lists for ACLs and partial replication
2003-12-16 00:49:10 +00:00
Kurt Zeilenga
75b9f8acdc
Make a few OPERATIONAL REQUIREMENT clarifications
...
Clean up formating
2003-12-15 18:41:23 +00:00
Pierangelo Masarati
7444352358
describe detailed access levels required for each operation
2003-12-15 17:55:55 +00:00
Pierangelo Masarati
9620cacd34
clarify the usage of the <modifier> field in 'dn' and 'domain' clauses of <who> access directive
2003-11-01 14:14:09 +00:00
Kurt Zeilenga
f6c1163eea
clarify that replacement, but not expression evaluation,
...
is done on the string in group.regex=string
We really should rename the style, in this case, to "replacement".
2003-10-15 08:04:25 +00:00
Howard Chu
0eca4fa42f
More for dynamic groups
2003-09-21 10:52:44 +00:00
Howard Chu
11148522ec
ITS#2573 dynamic group support
2003-09-21 10:45:57 +00:00
Howard Chu
b93a0f45d5
ITS#2497 value-level ACLs
2003-09-21 10:34:40 +00:00
Kurt Zeilenga
0954351565
Change ACL default style to exact (from regex)
2003-05-30 05:24:39 +00:00
Kurt Zeilenga
c8a6d52e04
Rework CAVEATS
2003-05-17 18:37:40 +00:00
Pierangelo Masarati
904f513028
clarify DN regex match quirks
2003-05-17 12:39:10 +00:00
Kurt Zeilenga
06da0f5e6f
Clarify "users" terminology
2003-04-15 02:20:01 +00:00
Pierangelo Masarati
250934254b
cleanup
2003-04-07 21:42:51 +00:00
Kurt Zeilenga
63efc41728
clarify global ACL use
...
clarify root and subschema DSE ACLs
2003-02-24 19:53:03 +00:00
Kurt Zeilenga
607215a8d6
Some dn.regex clarifications
2003-02-23 19:38:32 +00:00
Kurt Zeilenga
698d73d5f3
Disable reverse lookups by default for security
...
(and performance) reasons.
2003-02-08 07:40:19 +00:00
Kurt Zeilenga
1aae1854ac
delete (7) after UTF-8
2003-02-05 20:42:50 +00:00
Pierangelo Masarati
eed2d5db4d
only document 'subtree', but also allow 'sub'
2003-02-05 20:38:42 +00:00
Pierangelo Masarati
381e293b41
allow 'sub' and 'subtree' in acl (fix ITS#2300)
2003-02-05 19:39:34 +00:00
Kurt Zeilenga
6939c53170
Happy new year
2003-01-03 20:20:47 +00:00
Kurt Zeilenga
b43ad1dd0e
Generate man page date from version.sh
2002-06-13 03:59:10 +00:00
Kurt Zeilenga
2ab8810555
Documentation patch #4 (ITS#1749)
...
================
Written by Hallvard B. Furuseth and placed into the public domain.
This software is not subject to any license of the University of Oslo.
================
Small changes:
- Fix typo slapd_meta -> slapd-meta in slapd-meta(5).
- Add slapd-dnssrv(5) to SEE ALSO in slapd.conf(5).
- Add descriptions of the files in FILES sections.
- Add $HOME/.udrc to FILES in ud(1) and ud.conf(5).
- Add ldaprc (without ".") and ENVIRONMENT VARIABLES in ldap.conf(5).
- Change manpage references to proper ".BR name (section)".
Hallvard B. Furuseth <h.b.furuseth@usit.uio.no>, May 2002.
2002-05-09 02:07:41 +00:00
Pierangelo Masarati
1aa96af216
second round at ITS#1749
2002-05-01 16:38:30 +00:00
Pierangelo Masarati
4906410ca5
fix typo
2002-04-13 15:07:40 +00:00
Pierangelo Masarati
4a8ab5dbf2
Mostly based on patches provided by Hallvard B. Furuseth
...
ITS#1677 - cast away const warnings
ITS#1678 - unsigned char args to ctype funcs
ITS#1682 - don't redefine ldap_debug
ITS#1683 - uninitialized vars
ITS#1703 - ldo_debug initialization
ITS#1705 - unsigned testing
ITS#1706 - socklen_t args
ITS#1719 - back-tcl update (other cleanups/fixes/improvements; yet untested)
ITS#1724 - integerNormalize/integerFilter/integerIndexer bugs
ITS#1725 - libdes not required
Implement back-null (/dev/null style backend)
Cleanup some misc warnings ("%lu" format, unused/uninitialized vars,
ambiguous operator precedence)
Kurt, please regenerate configure
2002-04-08 09:43:22 +00:00
Howard Chu
93d9a11089
Mention that objectClass names are valid in the attrs=<attrlist> clause.
2002-01-10 10:02:51 +00:00
Kurt Zeilenga
0e2af54a3f
Update copyright statements
2002-01-04 21:17:25 +00:00
Kurt Zeilenga
74300deaab
Some minor adjustments
2001-11-03 21:53:44 +00:00
Pierangelo Masarati
cf13ded4fe
access control man page
2001-11-03 18:03:10 +00:00