[Freeipa-devel] [PATCHES] 0540-0542 Add managed read permissions to user
Petr Viktorin
pviktori at redhat.com
Wed May 28 14:02:40 UTC 2014
On 05/27/2014 05:13 PM, Simo Sorce wrote:
> On Tue, 2014-05-27 at 18:01 +0300, Alexander Bokovoy wrote:
>> On Tue, 27 May 2014, Petr Viktorin wrote:
>>> On 05/26/2014 12:13 PM, Petr Viktorin wrote:
>>> [...]
>>>>
>>>> Thanks for the thorough review!
>>>> Pushed to master: 63becae88c6c270b98f0432dc474b661b82f3119
>>>
>>>
>>> Okay guys, we have another issue:
>>> user-add (and the migration plugin) needs access to cn=UPG
>>> Definition,cn=Definitions,cn=Managed Entries,cn=etc,... to check the
>>> originfilter for '(objectclass=disable)'.
>>>
>>> Do we want to give read access to all users, or just user admins?
>> I would say user admins. If something more substantial fails, we'll
>> extend the access.
>>
>
> ACK
>
For the record, the change is in my patch 0560.
--
Petr³
More information about the Freeipa-devel
mailing list