From ed39262fa647434d4a0e31f07754a263ce2b16e3 Mon Sep 17 00:00:00 2001
From: neil_a_wilson <neil_a_wilson@localhost>
Date: Fri, 09 Feb 2007 21:51:09 +0000
Subject: [PATCH] Add an initial set of privilege support to OpenDS.  The current privileges are currently defined and implemented: * config-read (allow reading the configuration) * config-write (allow updating the configuration) * ldif-import (allow invoking LDIF import tasks) * ldif-export (allow invoking LDIF export tasks) * backend-backup (allow invoking backup tasks) * backend-restore (allow invoking restore tasks) * server-shutdown (allow invoking server shutdown tasks) * server-restart (allow invoking server restart tasks) * server-restart (allow invoking server restart tasks) * password-reset (allow resetting user passwords) * update-schema (allow updating the server schema) * privilege-change (allow changing the set of privileges for a user)

---
 opends/src/server/org/opends/server/config/ConfigConstants.java |   17 +++++++++++++++++
 1 files changed, 17 insertions(+), 0 deletions(-)

diff --git a/opends/src/server/org/opends/server/config/ConfigConstants.java b/opends/src/server/org/opends/server/config/ConfigConstants.java
index 2891767..ee1f4cc 100644
--- a/opends/src/server/org/opends/server/config/ConfigConstants.java
+++ b/opends/src/server/org/opends/server/config/ConfigConstants.java
@@ -544,6 +544,15 @@
 
 
   /**
+   * The name of the configuration attribute that specifies the set of
+   * privileges that root users should automatically be granted in the server.
+   */
+  public static final String ATTR_DEFAULT_ROOT_PRIVILEGE_NAME =
+       NAME_PREFIX_CFG + "default-root-privilege-name";
+
+
+
+  /**
    * The name of the configuration attribute that indicates which clients
    * should not be allowed to establish connections.
    */
@@ -3149,6 +3158,14 @@
 
 
   /**
+   * The name of the operational attribute that will appear in a user's entry to
+   * specify the set of privileges assigned to that user.
+   */
+  public static final String OP_ATTR_PRIVILEGE_NAME = "ds-privilege-name";
+
+
+
+  /**
    * The name of the operational attribute that will appear in a user's entry
    * to indicate the time that the password was last changed.
    */

--
Gitblit v1.10.0