mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
parent: a95e23 | patch | commitdiff
lutoff
19.01.2007 54483bd6059d46340faf8966709b6f057f879599
refs
author lutoff <lutoff@localhost>
Thursday, April 19, 2007 14:01 +0200
committer lutoff <lutoff@localhost>
Thursday, April 19, 2007 14:01 +0200
commit54483bd6059d46340faf8966709b6f057f879599
tree b53e5cd3ea2647cdaa16fe6c82b2be90ea823361 tree | zip | gz
parent a95e23839a0f0d8ccc20d71f2de81313ee08ca4c view | diff 
Fix 1525 (Cannot disable access control handler)

With Access control enabled (Dsee compat)

dn: cn=Access Control Handler,cn=config
objectClass: top
objectClass: ds-cfg-access-control-handler
objectClass: ds-cfg-dseecompat-access-control-handler
ds-cfg-global-aci: (targetattr!="userPassword||authPassword")(version 3.0; acl "Anonymous read access"; allow (read,search,compare) userdn="ldap:///anyone";)
ds-cfg-global-aci: (targetattr="*")(version 3.0; acl "Self entry modification"; allow (write) userdn="ldap:///self";)
cn: Access Control Handler
ds-cfg-acl-handler-class: org.opends.server.authorization.dseecompat.AciProvider
ds-cfg-acl-handler-enabled: true

./bin/start-ds -N
[19/Apr/2007:13:51:44 +0200] category=CORE severity=NOTICE id=458886 msg="OpenDS Directory Server 0.1.0 starting up."
[19/Apr/2007:13:51:48 +0200] category=CONFIG severity=NOTICE id=3605006 msg="Access control has been enabled and will use the org.opends.server.authorization.dseecompat.AciProvider implementation."
[19/Apr/2007:13:51:50 +0200] category=BACKEND severity=NOTICE id=8847402 msg="A database backend containing 0 entries has started."
[19/Apr/2007:13:51:52 +0200] category=CORE severity=NOTICE id=458887 msg="The Directory Server has started successfully."
[19/Apr/2007:13:51:52 +0200] category=CORE severity=NOTICE id=458891 msg="The Directory Server has sent an alert notification generated by class org.opends.server.core.DirectoryServer (alert type org.opends.server.DirectoryServerStarted, alert ID 458887):  The Directory Server has started successfully.."

With Access control disabled

dn: cn=Access Control Handler,cn=config
objectClass: top
objectClass: ds-cfg-access-control-handler
objectClass: ds-cfg-dseecompat-access-control-handler
ds-cfg-global-aci: (targetattr!="userPassword||authPassword")(version 3.0; acl "Anonymous read access"; allow (read,search,compare) userdn="ldap:///anyone";)
ds-cfg-global-aci: (targetattr="*")(version 3.0; acl "Self entry modification"; allow (write) userdn="ldap:///self";)
cn: Access Control Handler
ds-cfg-acl-handler-class: org.opends.server.authorization.dseecompat.AciProvider
ds-cfg-acl-handler-enabled: false

./bin/start-ds -N
[19/Apr/2007:13:54:29 +0200] category=CORE severity=NOTICE id=458886 msg="OpenDS Directory Server 0.1.0 starting up."
[19/Apr/2007:13:54:31 +0200] category=CONFIG severity=SEVERE_WARNING id=3277325 msg="Access control has been disabled."
[19/Apr/2007:13:54:31 +0200] category=BACKEND severity=NOTICE id=8847402 msg="A database backend containing 0 entries has started."
[19/Apr/2007:13:54:32 +0200] category=CORE severity=NOTICE id=458887 msg="The Directory Server has started successfully."
[19/Apr/2007:13:54:32 +0200] category=CORE severity=NOTICE id=458891 msg="The Directory Server has sent an alert notification generated by class org.opends.server.core.DirectoryServer (alert type org.opends.server.DirectoryServerStarted, alert ID 458887):  The Directory Server has started successfully.."

2 files modified
10 ■■■■■ changed files
opendj-sdk/opends/src/server/org/opends/server/core/AccessControlConfigManager.java 7 ●●●●● diff | view | raw | blame | history
opendj-sdk/opends/src/server/org/opends/server/core/DefaultAccessControlProvider.java 3 ●●●● diff | view | raw | blame | history