Add anyread to admins in example acl because don't be ridiculous

This commit is contained in:
Alex 2020-01-26 18:59:28 +01:00
parent b768b78406
commit 611d182907

View file

@ -57,10 +57,10 @@ func main() {
"*,dc=gobottin,dc=eu::read:*:* !userpassword",
// Anybody can read and modify anything from their own entry
"*::read modify:SELF:*",
// The admin can add, modify, delete anything
"cn=admin,dc=gobottin,dc=eu::add modify delete:*:*",
// Members of the admin group can add, modify, delete anything
"*:cn=admin,ou=groups,dc=gobottin,dc=eu:add modify delete:*:*",
// The admin can read, add, modify, delete anything
"cn=admin,dc=gobottin,dc=eu::read add modify delete:*:*",
// Members of the admin group can read, add, modify, delete anything
"*:cn=admin,ou=groups,dc=gobottin,dc=eu:read add modify delete:*:*",
}
acl, err := ParseACL(aclStr)
if err != nil {