[Freeipa-devel] [PATCH] 0524 Add managed read permission to config
Martin Kosek
mkosek at redhat.com
Tue Apr 15 08:43:44 UTC 2014
On 04/15/2014 10:37 AM, Petr Viktorin wrote:
> On 04/15/2014 09:53 AM, Martin Kosek wrote:
>> On 04/14/2014 10:00 PM, Petr Viktorin wrote:
>>> Read access is given to all authenticated users.
>>>
>>
>> This only works when I added cn and objectclass attributes to the ACI. Is this
>> expected?
>>
>> It would work when we add nsContainer ACI for cn=etc though as it has the
>> nsContainer objectlass.
>
> You're right, cn and objectclass should be granted explicitly. My mistake.
> Fixed patch attached.
>
>
That's better - works fine. ACK.
Pushed to master: 75eaf0bddfe0ce3eaea86b42a767c16846379b4b
Martin
More information about the Freeipa-devel
mailing list