--On Tuesday, September 8, 2020 12:59 PM +0200 Stefan Kania
<[email protected]> wrote:
Hello,
I would like to set ACLs to a bunch of attributes via ACL. Is it
possible to use regular expressions in the <what>x field for attrs,
someting like
access to attrs.regex=[a.*]
by ..... read
by * break
Hi Stefan,
Many years ago I wrote a page on various example ACLs when I worked for
Stanford University. It still exists, and has an example in it:
<https://uit.stanford.edu/service/directory/aclexamples>
Specifically:
access to dn.children="cn=people,dc=stanford,dc=edu" attrs=suPrivilegeGroup
val.regex="^stanford:.+"
by
group.base="cn=WebAuthPrivileged,cn=applications,dc=stanford,dc=edu"
sasl_ssf=56 read
by
group.base="cn=WebAuthGeneral,cn=applications,dc=stanford,dc=edu"
sasl_ssf=56 read
by * break
So your format is wrong, it's not "attrs.regex", it's attrs=ATTR
val.regex=REGEX
Regards,
Quanah
--
Quanah Gibson-Mount
Product Architect
Symas Corporation
Packaged, certified, and supported LDAP solutions powered by OpenLDAP:
<http://www.symas.com>
