On Sat, May 12, 2018 at 08:56:48PM +1000, Jonathan Matthew wrote:
> > This only supports "write" (modify, add, delete) and not "read"
> > (search) filter rules. The search mode will be more complicated and I
> > will look at this later.
> >
> > Thoughts? OK?
>
> ok. Read filters would be good
On Fri, May 11, 2018 at 10:42:32PM +0200, Reyk Floeter wrote:
> Hi!
>
> (resent to tech@)
> the following ldapd patch allows filter rules to match on attributes.
>
> This can be used to allow users to change their password (and a few
> other things) but not their entire dn.
>
> For example, in
Hi!
(resent to tech@)
the following ldapd patch allows filter rules to match on attributes.
This can be used to allow users to change their password (and a few
other things) but not their entire dn.
For example, in ldapd.conf:
allow read access to any by self
allow write access