mirror of https://github.com/OpenIdentityPlatform/OpenDJ.git
parent: 5adde802 | patch | commit | show whitespace
neil_a_wilson
07.38.2007 64fa74f41fbab8aaca206be769bc4d26cd604009 
Update the global ACI definitions to allow all users to read entryUUID.
1 files modified
2 ■■■ changed files
opends/resource/config/config.ldif 2 ●●● patch | view | raw | blame | history 
 opends/resource/config/config.ldif


@@ -55,7 +55,7 @@


ds-cfg-global-aci: (targetattr="*")(version 3.0; acl "Self entry modification"; allow (write) userdn="ldap:///self";)


ds-cfg-global-aci: (target="ldap:///cn=schema")(targetscope="base")(targetattr="attributeTypes||dITContentRules||dITStructureRules||ldapSyntaxes||matchingRules||matchingRuleUse||nameForms||objectClasses")(version 3.0; acl "User-Visible Schema Operational Attributes"; allow (read,search,compare) userdn="ldap:///anyone";)


ds-cfg-global-aci: (target="ldap:///")(targetscope="base")(targetattr="namingContexts||supportedAuthPasswordSchemes||supportedControl||supportedExtension||supportedFeatures||supportedSASLMechanisms||vendorName||vendorVersion")(version 3.0; acl "User-Visible Root DSE Operational Attributes"; allow (read,search,compare) userdn="ldap:///anyone";)


ds-cfg-global-aci: (targetattr="createTimestamp||creatorsName||modifiersName||modifyTimestamp||entryDN||subschemaSubentry")(version 3.0; acl "User-Visible Operational Attributes"; allow (read,search,compare) userdn="ldap:///anyone";)


ds-cfg-global-aci: (targetattr="createTimestamp||creatorsName||modifiersName||modifyTimestamp||entryDN||entryUUID||subschemaSubentry")(version 3.0; acl "User-Visible Operational Attributes"; allow (read,search,compare) userdn="ldap:///anyone";)


cn: Access Control Handler


ds-cfg-acl-handler-class: org.opends.server.authorization.dseecompat.AciProvider


ds-cfg-acl-handler-enabled: true