diff options
| author |   Jeremy Huddleston <eradicator@gentoo.org> | 2005-09-24 20:38:54 +0000 |
|---|---|---|
| committer | Jeremy Huddleston <eradicator@gentoo.org> | 2005-09-24 20:38:54 +0000 |
| commit | 94495d03754656cd0d0198fe979a054620570cb7 (patch) | |
| tree | 06a91d989fcea402e30dcddeacb144913b59a718 /www-apps | |
| parent | version bump (diff) | |
| download | gentoo-2-94495d03754656cd0d0198fe979a054620570cb7.tar.gz gentoo-2-94495d03754656cd0d0198fe979a054620570cb7.tar.bz2 gentoo-2-94495d03754656cd0d0198fe979a054620570cb7.zip | |
Fixed up the slapd permissions include.
(Portage version: 2.0.52-r1)
Diffstat (limited to 'www-apps')
| -rw-r--r-- | www-apps/open-xchange/ChangeLog | 5 | ||||
| -rw-r--r-- | www-apps/open-xchange/files/slapd.ox.inc | 31 |
2 files changed, 17 insertions, 19 deletions
diff --git a/www-apps/open-xchange/ChangeLog b/www-apps/open-xchange/ChangeLog index 1ba9745dca75..e58bef994a7d 100644 --- a/www-apps/open-xchange/ChangeLog +++ b/www-apps/open-xchange/ChangeLog @@ -1,6 +1,9 @@ # ChangeLog for www-apps/open-xchange # Copyright 1999-2005 Gentoo Foundation; Distributed under the GPL v2 -# $Header: /var/cvsroot/gentoo-x86/www-apps/open-xchange/ChangeLog,v 1.1 2005/09/24 03:24:00 eradicator Exp $ +# $Header: /var/cvsroot/gentoo-x86/www-apps/open-xchange/ChangeLog,v 1.2 2005/09/24 20:38:54 eradicator Exp $ + + 24 Sep 2005; Jeremy Huddleston <eradicator@gentoo.org> files/slapd.ox.inc: + Fixed up the slapd permissions include. *open-xchange-0.8.1.2 (24 Sep 2005) diff --git a/www-apps/open-xchange/files/slapd.ox.inc b/www-apps/open-xchange/files/slapd.ox.inc index a3db13a811aa..03a7f58927bc 100644 --- a/www-apps/open-xchange/files/slapd.ox.inc +++ b/www-apps/open-xchange/files/slapd.ox.inc @@ -1,36 +1,31 @@ -#access to attribute=userPassword -# by dn="cn=admin,@basedn@" write -# by anonymous auth -# by self write -# by * none - -#access to * -# by dn="cn=admin,@basedn@" write -# by self write -# by * read - access to dn.base="" by * read access to dn.base="cn=Subschema" by * read # protect the userPassword attribute -access to attr=userPassword - by self =w +access to attrs=userPassword,shadowLastChange + by dn="uid=root,ou=Users,ou=OxObjects,dc=gen-ux,dc=com" write by anonymous auth + by self write + by * none # global address book -access to dn.subtree="o=AddressBook,ou=OxObjects,@basedn@" - by group.exact="cn=AddressAdmins,o=AddressBook,ou=OxObjects,@basedn@" write +access to dn.subtree="o=AddressBook,ou=OxObjects,dc=gen-ux,dc=com" + by group.exact="cn=AddressAdmins,o=AddressBook,ou=OxObjects,dc=gen-ux,dc=com" write by users read # personal address book -access to dn.regex="^ou=addr,(uid=([^,]+),ou=Users,ou=OxObjects,@basedn@)$" attrs=children +access to dn.regex="^ou=addr,(uid=([^,]+),ou=Users,ou=OxObjects,dc=gen-ux,dc=com)$" attrs=children by dn.exact,expand="$1" write -access to dn.regex="^uid=([^,]+),ou=addr,(uid=([^,]+),ou=Users,ou=OxObjects,@basedn@)$" attrs=entry +access to dn.regex="^uid=([^,]+),ou=addr,(uid=([^,]+),ou=Users,ou=OxObjects,dc=gen-ux,dc=com)$" attrs=entry by dn.exact,expand="$2" write # default rule allowing users full access to their own entries -access to attrs=cn,description,gecos,givenName,initials,l,labeledURI,mobile,o,OXAppointmentDays,OXTaskDays,OXTimeZone,postalCode,preferredLanguage,sn,st,street,title,userCountry +access to attr=birthDay,cn,description,gecos,givenName,initials,l,labeledURI,mobile,o,OXAppointmentDays,OXTaskDays,OXTimeZone,postalCode,preferredLanguage,sn,st,street,title,userCountry by self write by users read +access to * + by dn="uid=root,ou=Users,ou=OxObjects,dc=gen-ux,dc=com" write + by * read + index uid,mailEnabled,cn,sn,givenname,lnetMailAccess,alias,loginDestination eq,sub |