org.forgerock / org.forgerock.opendj

25 Jul, 2007

6 commits

24 Jul, 2007

7 commits

23 Jul, 2007

14 commits

21 Jul, 2007

1 commit

  • fa89b0b8   Add the new ACI keyword "targetcontrol" that can be used to enforce access ... Browse Dir » 
    based on the OID of a control. For example, a new global access control rule
is also being added: 

ds-cfg-global-aci: (targetcontrol="2.16.840.1.113730.3.4.2 || 2.16.840.1.113730.3.4.17 ||
 2.16.840.1.113730.3.4.19 || 1.3.6.1.4.1.4203.1.10.2") 
 (version 3.0; acl "Anonymous control access"; allow(read) userdn="ldap:///anyone";)

which allows anonymous access to the following controls:

- Manage DSA IT (2.16.840.1.113730.3.4.2)
- Real Attributes Only (2.16.840.1.113730.3.4.17)
- Virtual Attributes Only (2.16.840.1.113730.3.4.19)
- LDAP No-Op Control (1.3.6.1.4.1.4203.1.10.2) 

A wildcard can also be specified. The following ACI rule allows access to all controls:

(targetcontrol="*") (version 3.0; acl "All control access example"; 
    allow(read) userdn="ldap:///self";)

This ACI could be put on a users entry -- it doesn't need to be a global ACI.

Issue #452.


git-svn-id: https://svn.forgerock.org/opendj/trunk@2449 41b1ffd8-f28e-4786-ab96-9950f0a78031
    dugan
     

20 Jul, 2007

7 commits

  • 52a7e720   Add a general framework for OpenDS to send e-mail messages, and add an SMTP ... Browse Dir » 
    alert handler that can be used to send e-mail messages in response to
administrative alerts generated within the server.

OpenDS Issue Number:  221


git-svn-id: https://svn.forgerock.org/opendj/trunk@2448 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     
  • 02a8091b   Fix for issue 2006. ... Browse Dir » 
    Compare the values provided by the user for the different ports.  If they match, display an error message.


git-svn-id: https://svn.forgerock.org/opendj/trunk@2447 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • 8ee3f939   Fix for issue 1986. ... Browse Dir » 
    In the Java Web Start installer and in the setup.bat script check that the current path does not contain a
 % character.



git-svn-id: https://svn.forgerock.org/opendj/trunk@2446 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • 60966d3f   Fix issue 2001 - unusual odyssey when attempting to create a virtual attribute configuration. ... Browse Dir » 
    The conflict-behavior was defined as being optional with a defined default value. However, the LDAP schema for the associated virtual attribute object class labeled the attribute as mandatory. This change updates the schema to align it with the XML definition.

git-svn-id: https://svn.forgerock.org/opendj/trunk@2445 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     
  • 676e88e1   Fix issues 1966 and 1792. ... Browse Dir » 
    Add support for hiding relations and, using this feature, prevent users from access root DN user configurations through the CLI.

To make it easier to add new features to relation definitions in the future I have refactored the RelationDefinition classes so that they provide a Builder API for incrementally constructing new definitions.

git-svn-id: https://svn.forgerock.org/opendj/trunk@2444 41b1ffd8-f28e-4786-ab96-9950f0a78031
    matthew_swift
     
  • daa92ce1   Make this class public in order to use it in other packages ... Browse Dir » 
    git-svn-id: https://svn.forgerock.org/opendj/trunk@2443 41b1ffd8-f28e-4786-ab96-9950f0a78031
    lutoff
     
  • 10cbb5f6   When command grouping is used (in dscondig for instance) the top level help displays: ... Browse Dir » 
        $ dsconfig --help
    This utility may be used to define a base configuration for the Directory
    Server
    Usage:  dsconfig {subcommand} {options}

    Available subcommands:
    --help-core
        Display subcommands relating to core server
    --help-database
        Display subcommands relating to caching and back-ends
    <...>
    
This modification replaces the help sentence ("Available subcommands") by "To get the list of subcommands use:"

    dsconfig --help
    This utility may be used to define a base configuration for the Directory
    Server
    Usage:  dsconfig {subcommand} {options}

    To get the list of subcommands use:
    --help-core
        Display subcommands relating to core server
    --help-database
        Display subcommands relating to caching and back-ends
    <...>




git-svn-id: https://svn.forgerock.org/opendj/trunk@2442 41b1ffd8-f28e-4786-ab96-9950f0a78031
    lutoff
     

19 Jul, 2007

5 commits

  • 66fde45d   Update the build script to expose dsconfig. ... Browse Dir » 
    
git-svn-id: https://svn.forgerock.org/opendj/trunk@2441 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     
  • 738e3a97   This initial implementation lays most of the groundwork necessary for signaling … ... Browse Dir » 
    …information and actions to the user during upgrade and reversion.  However the only public effect this code has on the current upgrade tool is an informational dialog dialog if an upgrade is attempted from a build prior to one of the issues (2049, 1582, 890).

With this commit:

- start-ds -F now advertises 'Upgrade Event IDs' which are the IDs of issues defined in VersionCompatibilityIssues that theoretically would have been encountered up to the current build.

- As mentioned above VersionCompatibilityIssue defines an issue and serves as the repository for issues.  I tried to provide as many comments as possible to make it apparent how to define issues in the future.

- The upgrader's VersionOracle is responsible for correlating the version issues with actions to be taken by the upgrader or yet-to-be implemented reversion tools and presenting them to the user during the operation.



git-svn-id: https://svn.forgerock.org/opendj/trunk@2440 41b1ffd8-f28e-4786-ab96-9950f0a78031
    kenneth_suter
     
  • 704c0ac7   Update the server so that the set of alert handlers are configurable rather ... Browse Dir » 
    than simply using a hard-coded JMX alert handler.


git-svn-id: https://svn.forgerock.org/opendj/trunk@2439 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson
     
  • c39250eb   Use consistently the terminology "Base DN" instead of suffix in the graphical tools. ... Browse Dir » 
    Fix a bug in the replication configuraton code that caused issues when references to existing replication servers existed.

Modify the text of the summary of the setup informing the user of whether the server is running or not.

Stop the server systematically if the setup fails.


git-svn-id: https://svn.forgerock.org/opendj/trunk@2438 41b1ffd8-f28e-4786-ab96-9950f0a78031
    jvergara
     
  • d965135d   Update the server to provide more complete support for the password policy ... Browse Dir » 
    control as described in draft-behera-ldap-password-policy.  In particular,
improved support has been provided for all operations for the case in which a
user must change his/her password before performing any other types of
operations.  These changes also provide enhanced support for add and modify
operations that are rejected because a password change is not acceptable for
some reason.

OpenDS Issue Number:  90


git-svn-id: https://svn.forgerock.org/opendj/trunk@2437 41b1ffd8-f28e-4786-ab96-9950f0a78031
    neil_a_wilson