[Freeipa-devel] [PATCH 0032] Update ACIs to permit users to add/delete their own tokens
Nathaniel McCallum
npmccallum at redhat.com
Thu Feb 6 18:41:15 UTC 2014
On Thu, 2014-01-09 at 16:32 -0500, Nathaniel McCallum wrote:
> This patch is independent from my patches 0028-0031 and can be merged in
> any order.
>
> This patch has a bug, but I can't figure it out. We need to set
> nsslapd-access-userattr-strict on cn=config to "off". However, during
> the rpm installation, I get this error:
>
> DEBUG Unhandled LDAPError: UNWILLING_TO_PERFORM: {'info': 'Deleting
> attributes is not allowed', 'desc': 'Server is unwilling to perform'}
> ERROR Update failed: Server is unwilling to perform: Deleting attributes
> is not allowed
>
> I'm not sure what is causing this. Does anyone have any suggestions?
Attached is a new revision of this patch. It uses the new SELFDN support
present in 389-ds-base 1.3.2.11 that was a result of the previous review
of this patch.
It currently depends on the HOTP patch (0033-2). However, if we wish to
merge this first, this could be easily rebased.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: freeipa-npmccallum-0032-1-Update-ACIs-to-permit-users-to-add-delete-their-own-.patch
Type: text/x-patch
Size: 4556 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/freeipa-devel/attachments/20140206/fb31f18b/attachment.bin>
More information about the Freeipa-devel
mailing list