ldap.modlist.modifyModlist()
Paul Wankadia
junyer at gmail.com
Sun Sep 21 08:25:37 CEST 2008
On Sat, Sep 20, 2008 at 1:00 AM, Michael Ströder <michael at stroeder.com> wrote:
>> Access to objectClass is restricted, for example, so it's necessary to
>> be surgical.
>
> Is access to attribute 'objectClass' restricted as a whole? Or do you
> have ACLs based on certain attribute values (object class names in this
> case)? Only the latter case seems to be a problem to me.
It is indeed the latter.
>> Do you happen to know whether OpenLDAP has any problems in this regard?
>
> Actually I started with an implementation of modifyModlist() in web2ldap
> which did almost exactly what you propose. But in general it turned out
> not to be usable. It always depends on the attributes you're dealing
> with. Check the subschema on your server.
I will do so.
Thanks for your time.
More information about the python-ldap
mailing list