[Freeipa-devel] [PATCH 0032] Update ACIs to permit users to add/delete their own tokens
Alexander Bokovoy
abokovoy at redhat.com
Mon Feb 10 13:11:07 UTC 2014
On Thu, 06 Feb 2014, Nathaniel McCallum wrote:
>On Thu, 2014-01-09 at 16:32 -0500, Nathaniel McCallum wrote:
>> This patch is independent from my patches 0028-0031 and can be merged in
>> any order.
>>
>> This patch has a bug, but I can't figure it out. We need to set
>> nsslapd-access-userattr-strict on cn=config to "off". However, during
>> the rpm installation, I get this error:
>>
>> DEBUG Unhandled LDAPError: UNWILLING_TO_PERFORM: {'info': 'Deleting
>> attributes is not allowed', 'desc': 'Server is unwilling to perform'}
>> ERROR Update failed: Server is unwilling to perform: Deleting attributes
>> is not allowed
>>
>> I'm not sure what is causing this. Does anyone have any suggestions?
>
>Attached is a new revision of this patch. It uses the new SELFDN support
>present in 389-ds-base 1.3.2.11 that was a result of the previous review
>of this patch.
>
>It currently depends on the HOTP patch (0033-2). However, if we wish to
>merge this first, this could be easily rebased.
Could you please rebase it? It would be good to merge it first because
0033-2 depends on otp infrastructure patches.
--
/ Alexander Bokovoy
More information about the Freeipa-devel
mailing list