View | Details | Raw Unified | Return to bug 34203
Collapse All | Expand All

(-)a/branches/ucs-3.2/ucs-3.2-1/management/univention-ldap/conffiles/etc/ldap/slapd.conf.d/60univention-ldap-server_acl-slave (-3 / +4 lines)
 Lines 24-33   if baseConfig['ldap/hostdn']: Link Here 
24 
print 'access to *'
 24 
print 'access to *'
25 
if baseConfig.is_false('ldap/acl/read/anonymous'):
 25 
if baseConfig.is_false('ldap/acl/read/anonymous'):
26 
	print '   by users read'
 26 
	print '   by users read'
27 
	ldap_acl_read_anonymous_ips = baseConfig.get('ldap/acl/read/ips')
 27 
	for ip in configRegistry.get('ldap/acl/read/ips', '').split(',')
28 
	if ldap_acl_read_anonymous_ips:
 28 
		if '.' in ip:
29 
		for ip in ldap_acl_read_anonymous_ips.split(','):
30 
			print '   by peername.ip=%s read' % ip
 29 
			print '   by peername.ip=%s read' % ip
30 
		elif ':' in ip:
31 
			print '   by peername.ipv6=%s read' % ip
31 
else:
 32 
else:
32 
	print '   by * read'
 33 
	print '   by * read'
33 
print
 34 
print
(-)a/branches/ucs-3.2/ucs-3.2-1/management/univention-ldap/conffiles/etc/ldap/slapd.conf.d/70univention-ldap-server_acl-master-end (-3 / +4 lines)
 Lines 149-158   else: Link Here 
149 
	print '   by group/univentionGroup/uniqueMember="cn=%s,cn=groups,%s" %s' % ( groups_default_domainadmins, ldap_base, usr )
 149 
	print '   by group/univentionGroup/uniqueMember="cn=%s,cn=groups,%s" %s' % ( groups_default_domainadmins, ldap_base, usr )
150 
if configRegistry.is_false('ldap/acl/read/anonymous'):
 150 
if configRegistry.is_false('ldap/acl/read/anonymous'):
151 
	print '   by users read'
 151 
	print '   by users read'
152 
	ldap_acl_read_anonymous_ips = configRegistry.get('ldap/acl/read/ips')
 152 
	for ip in configRegistry.get('ldap/acl/read/ips', '').split(',')
153 
	if ldap_acl_read_anonymous_ips:
 153 
		if '.' in ip:
154 
		for ip in ldap_acl_read_anonymous_ips.split(','):
155 
			print '   by peername.ip=%s read' % ip
 154 
			print '   by peername.ip=%s read' % ip
155 
		elif ':' in ip:
156 
			print '   by peername.ipv6=%s read' % ip
156 
else:
 157 
else:
157 
	print '   by * read'
 158 
	print '   by * read'
158 

          159
          

        



(-)a/branches/ucs-3.2/ucs-3.2-1/management/univention-ldap/debian/univention-ldap-server.univention-config-registry-variables
      (-2 / +2 lines)




  

    

    

       Lines 121-128
      Type=bool 
    
  Link Here 
    

  

        

          121
          
Categories=service-ldap

          121
          
Categories=service-ldap

        

        

          122
          

          122
          

        

        

          123
          
[ldap/acl/read/ips]

          123
          
[ldap/acl/read/ips]

        

          
            

              124
              
Description[de]=Wenn die LDAP-Suche nur authentifiziert möglich ist (siehe 'ldap/acl/read/anonymous'), können einzelne IP-Adressen über diese Variable für den anonymen Lesezugriff freigeschaltet werden. Mehrere Werte werden durch Komma getrennt.


              124
              
Description[de]=Wenn die LDAP-Suche nur authentifiziert möglich ist (siehe 'ldap/acl/read/anonymous'), können einzelne IPv4- und IPv6-Adressen über diese Variable für den anonymen Lesezugriff freigeschaltet werden. Mehrere Werte werden durch Komma getrennt.

            

            

              125
              
Description[en]=If only authenticated LDAP searches are allowed (see 'ldap/acl/read/anonymous'), individual IP addresses can be granted anonymous read permissions via this variable. Multiple values are separated by commas.


              125
              
Description[en]=If only authenticated LDAP searches are allowed (see 'ldap/acl/read/anonymous'), individual IPv4 and IPv6 addresses can be granted anonymous read permissions via this variable. Multiple values are separated by commas.

            

        

          126
          
Type=str

          126
          
Type=str

        

        

          127
          
Categories=service-ldap

          127
          
Categories=service-ldap

        

        

          128
          

          128
          

        






  

  Return to bug 34203