blob: 037ae655a6af821a396e58f8f49e46dd86b875dc (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
|
/!\ This work is still in developpement, DO NOT run/install that on a
production server!
Since the user now have (partial) write access to the LDAP directory, it
is of crucial importance to configure the ACL properly.
* "populate.ldif" is meant to provide at least an example of every
single situation we may encounter in our directory.
* "test-user-acl.sh" checks the database against the ACLs.
/!\ Every modification to the schema or the ACLs should be made to
"populate.ldif" and "test-user-acl.sh" too!
Usage:
* Load the ACLs:
ldapmodify -Y EXTERNAL -H ldapi:/// -f acl.ldif
* Repopulate the database (will clear it out first!):
ldapdelete -Y EXTERNAL -H ldapi:/// -r "ou=virtual,o=mailHosting,dc=fripost,dc=dev" ; ldapadd -Y EXTERNAL -H ldapi:/// -f populate.ldif
* Running the test suite:
sudo ./test-user-acl.sh
|