Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | lint fixes for openldap | Thomas Backlund | 2015-10-20 | 1 | -1/+0 |
| | |||||
* | openldap: allow setting drink (favoriteDrink) attribute | Nicolas Vigier | 2013-04-18 | 1 | -1/+1 |
| | |||||
* | Give group owner access (read - including search - and write) to owner attribute | Buchan Milne | 2011-02-20 | 1 | -1/+1 |
| | |||||
* | - add right to users to do a CMP against group member, | Michael Scherer | 2011-02-19 | 1 | -1/+1 |
| | | | | | as the django plugin to auth against ldap ( used by transifex ) use this to determine group membership and fail if the access is not sufficient | ||||
* | Let users modify their names | Buchan Milne | 2011-02-16 | 1 | -1/+1 |
| | |||||
* | Change ACL for non-privileged users to not work on reset model, instead allow | Buchan Milne | 2011-01-22 | 1 | -2/+2 |
| | | | | | registrars to change unprivileged passwords directly | ||||
* | - do not let user change their own memberOf attribute, ( even if the overlay ↵ | Michael Scherer | 2010-12-16 | 1 | -1/+6 |
| | | | | may prevent it ) | ||||
* | let users see who is in another group ( needed for sympa ) | Michael Scherer | 2010-12-14 | 1 | -1/+1 |
| | |||||
* | allow users to read memberof, and use overlay to keep the changes in sync | Michael Scherer | 2010-12-10 | 1 | -1/+1 |
| | |||||
* | Allow users to write their own sshPublicKey, and all users to read it | Buchan Milne | 2010-11-23 | 1 | -1/+1 |
| | |||||
* | Fix host access to posixAccount attrs | Buchan Milne | 2010-11-22 | 1 | -1/+1 |
| | |||||
* | - add proper access to nss_ldap user so pam_ldap auth can work | Michael Scherer | 2010-11-22 | 1 | -0/+7 |
| | |||||
* | - do not hardcode mageia.org in acl | Michael Scherer | 2010-11-22 | 1 | -57/+57 |
| | |||||
* | Close more anon access, and open up read access to some inetOrgPerson attrs ↵ | Buchan Milne | 2010-11-09 | 1 | -11/+13 |
| | | | | to users | ||||
* | Allow a bit more access to groups | Buchan Milne | 2010-11-05 | 1 | -1/+1 |
| | |||||
* | Try and allow users to identify the groups another user is in | Buchan Milne | 2010-11-05 | 1 | -1/+5 |
| | |||||
* | Give registrar group read access to some attributes again, and reduce users ↵ | Buchan Milne | 2010-11-05 | 1 | -2/+2 |
| | | | | | | | access added in previous commit | ||||
* | Open read access for users to contact-type details for now | Buchan Milne | 2010-11-05 | 1 | -1/+1 |
| | |||||
* | Catdap needs some search access as well | Buchan Milne | 2010-11-05 | 1 | -3/+3 |
| | | | | | Also allow catdap to write preferredLanguage | ||||
* | Finalise registration ACLs | Buchan Milne | 2010-11-05 | 1 | -11/+14 |
| | | | | | | | | | Restrict anonymous access (to none) Add some additional ACLs to put back some access that previously relied on anonymous Listen on all IP addresses, and ldapi Assign localSSF matching ssf requirement, so we allow ldapi,ldaps,ldap+start_tls | ||||
* | ACLs: | Buchan Milne | 2010-11-04 | 1 | -2/+20 |
| | | | | | | | | | | Add ACLs required for self-registration application to registrar system group Allow Account admins to unlock accounts (write to pwdAccountLockedTime) Allow users to update their email address and preferredLanguage Schema: Switch to rfc2307bis (replacing nis.schema and autofs.schema) Add LPK | ||||
* | - deploy ldap with puppet on valstar | Michael Scherer | 2010-10-28 | 1 | -0/+157 |