directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alex Karasulu (JIRA)" <j...@apache.org>
Subject [jira] Commented: (DIRSERVER-606) ou=users, ou=system - user cannot see their own entry
Date Mon, 24 Apr 2006 14:51:06 GMT
    [ http://issues.apache.org/jira/browse/DIRSERVER-606?page=comments#action_12376043 ] 

Alex Karasulu commented on DIRSERVER-606:
-----------------------------------------

I like the renaming idea.  I guess this OldAuthZService will always hang around as long as
people don't want to grok the ACI based AuthZService.  Don't know if we should bother deleting
this.  I guess its best to rename to Minimal/Default AuthZService as you guys suggest.

But this problem should be solved.  Users should be allowed to see their own entry.  Users
should be able to see and update their own entries for self service perhaps? WDYT?  Sometimes
I think another application with superuser access can do this and regular users can be shielded
from their own attributes but this does not play well when logging in as yourself to the directory.



> ou=users, ou=system - user cannot see their own entry
> -----------------------------------------------------
>
>          Key: DIRSERVER-606
>          URL: http://issues.apache.org/jira/browse/DIRSERVER-606
>      Project: Directory ApacheDS
>         Type: Bug

>     Versions: 1.0-RC1
>  Environment: JDK 1.4.1
> Tried both JXplorer, and from ACEGI security
>     Reporter: Marc Batchelor
>     Assignee: Stefan Zoerner
>     Priority: Critical
>  Attachments: patch.txt, patch_DIRSERVER-606_2.txt
>
> User binds to ApacheDS as a user under ou=users, ou=system. The user cannot see their
own entry to get their own attributes.
> Documentation states: Users cannot see other user entries under the 'ou=users,ou=system'
entry.
> Agreed and understood. But, the user, after binding with the directory, cannot even find
their own entry to get their own attributes. 

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira


Mime
View raw message