[Freeipa-devel] [PATCHES] 0534-0535 Add several managed read permissions under cn=etc

Petr Viktorin pviktori at redhat.com
Wed Apr 23 11:42:59 UTC 2014

This adds managed read permissions to cn=etc. Since these permissions 
are not bound to objects, the first patch adds support for those. 
They're defined in the update plugin.

The second patch adds permissions for various subtrees/entries in 
cn=etc, according to the [discussion thread].

I wonder if we should limit the attributes in cn=replication; are all 
nsds5replica attrs needed?
For cn=ad,cn=etc I put the permission in cn=etc and used a target, since 
cn=ad is not present by default.

[discussion thread]: 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pviktori-0534-Add-a-list-of-non-plugin-default-permissions.patch
Type: text/x-patch
Size: 2401 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20140423/3fc0cc50/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-pviktori-0535-Add-several-managed-read-permissions-under-cn-etc.patch
Type: text/x-patch
Size: 5641 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20140423/3fc0cc50/attachment-0001.bin>

More information about the Freeipa-devel mailing list