[Freeipa-devel] [PATCH] part one of allowing RDN changes
Rob Crittenden
rcritten at redhat.com
Tue Nov 13 04:13:09 UTC 2007
- Allow a user or group to change an attribute in its RDN
- Add secretary to the list of indexes otherwise RDN changing could be slow
- Port --addattr, --setattr and --delattr from usermod to groupmod
One can do it via the command line with something like:
% ipa-usermod --setattr=uid=joesomebody joenobody
Doing this in the UI will take a bit more time and thought. I'm not sure
I want it to be very easy to do this. I know I've hated my login at
several companies I've worked for but have been told (it's our policy).
So we should tread carefully.
I'm thinking that this field may only be editable if you're in the
admins group (in the UI only).
Note that I am making certain assumptions such as users are
distinguished by uid= and groups by cn=. That is the only part of the DN
that one may change.
rob
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-371-rdn.patch
Type: text/x-patch
Size: 14560 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20071112/3b9c7ab6/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3245 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20071112/3b9c7ab6/attachment-0001.bin>
More information about the Freeipa-devel
mailing list