Apache Directory Project - [jira] Commented: (DIR-126) ACI problem when using

This is Interesting: Free IT Magazines  
Home > Archive > Apache Directory Project > March 2006 > [jira] Commented: (DIR-126) ACI problem when using





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author [jira] Commented: (DIR-126) ACI problem when using
Tony Blanchard (JIRA)

2006-03-03, 5:47 pm

[ http://issues.apache.org/jira/brows...action_12368728 ]

Tony Blanchard commented on DIR-126:
------------------------------------

I use the revision 381318 and I think this issue is resolved.
Maybe Giamma could confirm it.

> ACI problem when using com.sun.jndi.ldap.LdapCtxFactory as the INITIAL_CONTEXT_FACTORY
> --------------------------------------------------------------------------------------
>
> Key: DIR-126
> URL: http://issues.apache.org/jira/browse/DIR-126
> Project: Directory
> Type: Bug
> Environment: Win XP SP2
> JRE1.5_04
> Reporter: Tony Blanchard
> Assignee: Alex Karasulu

>
> As mentioned by Gianmaria Clerici,
> the use of com.sun.jndi.ldap.LdapCtxFactory instead of org.apache.ldap.server.jndi.CoreContextFactory as the INITIAL_CONTEXT_FACTORY makes ACIs not working.
> Here is an explanationof the problem I sent on the list :
> I have some troubles to add some ACIs on ou=system to enable users to do
> what they want with their own entry.
> I added an "accessControlSpecificArea" value to the "administrativeRole"
> attribute on ou=system.
> I used the following subtree specification : "{}" and the following
> value for my prescriptiveACI on the accesControlSubentry I created
> under ou=system :
> " { identificationTag "enableUserSelfModification", precedence 1,
> authenticationLevel simple, itemOrUserFirst userFirst:{ userClasses {
> thisEntry }, userPermissions { { protectedItems { entry,
> allUserAttributeTypesAndValues }, grantsAndDenials { grantAdd,
> grantRemove, grantModify, grantFilterMatch, grantCompare, grantRead,
> grantReturnDN, grantBrowse } } } } }"
> When i create a new user with admin rights and try to log under this
> user, i get a 50 error code : noPermission. This is not an 49 error code
> : AuthenticationException

--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secur...nistrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira


Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com