Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-6881

Review default ACI policies shipped with DS and its profiles

    XMLWordPrintable

Details

    Description

      While reviewing https://stash.forgerock.org/projects/OPENDJ/repos/opendj/pull-requests/5020 it became clear that many of our existing default ACIs, including those used by profiles, are badly placed (global instead of located with their data), arbitrary (e.g. include pre-read, but not assertion control), duplicate other ACIs (CTS includes ACIs for StartTLS), etc.

      This JIRA can be closed once we have reviewed and cleaned up the various ACIs that we provide in a freshly installed server.

      Attachments

        Issue Links

          Activity

            People

              ondrej.fuchsik Ondrej Fuchsik
              matthew Matthew Swift
              Matthew Swift Matthew Swift
              Ondrej Fuchsik Ondrej Fuchsik
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: