solution
This commit is contained in:
@@ -12,4 +12,6 @@ Mettre en place les acls permettant de protéger l'accès au champ userpassword
|
|||||||
|
|
||||||
## Un exemple plus complet:
|
## Un exemple plus complet:
|
||||||
|
|
||||||
Mettre au point l'acl permettant à chaque utilisateur de modifier ses propres informations
|
Mettre au point l'acl permettant à chaque utilisateur de modifier ses propres informations
|
||||||
|
|
||||||
|
👀 Voir le fichier _acl.ldif_
|
||||||
22
acl.ldif
Normal file
22
acl.ldif
Normal file
@@ -0,0 +1,22 @@
|
|||||||
|
dn: olcDatabase={2}mdb,cn=config
|
||||||
|
changetype: modify
|
||||||
|
delete: olcAccess
|
||||||
|
-
|
||||||
|
add: olcAccess
|
||||||
|
olcAccess: to attrs=userpassword,email by anonymous auth by self write by dn.sub=ou=services,dc=example,dc=fr read by * none
|
||||||
|
-
|
||||||
|
add: olcaccess
|
||||||
|
olcAccess: to dn.sub=cn=policy,dc=example,dc=fr by * none
|
||||||
|
-
|
||||||
|
add: olcaccess
|
||||||
|
olcAccess: to dn.sub=ou=services,dc=example,dc=fr by * none
|
||||||
|
-
|
||||||
|
add: olcaccess
|
||||||
|
olcAccess: to dn.regex=uid=([^,]+),ou=users,dc=example,dc=fr
|
||||||
|
by dn.exact,expand=uid=$1,ou=users,dc=example,dc=fr write
|
||||||
|
by users read
|
||||||
|
by * none
|
||||||
|
-
|
||||||
|
add: olcaccess
|
||||||
|
olcaccess: to dn.sub=dc=example,dc=fr by users read by * none
|
||||||
|
|
||||||
Reference in New Issue
Block a user