Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-6881

Review default ACI policies shipped with DS and its profiles

    Details

      Description

      While reviewing https://stash.forgerock.org/projects/OPENDJ/repos/opendj/pull-requests/5020 it became clear that many of our existing default ACIs, including those used by profiles, are badly placed (global instead of located with their data), arbitrary (e.g. include pre-read, but not assertion control), duplicate other ACIs (CTS includes ACIs for StartTLS), etc.

      This JIRA can be closed once we have reviewed and cleaned up the various ACIs that we provide in a freshly installed server.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                matthew Matthew Swift
                Reporter:
                matthew Matthew Swift
                Dev Assignee:
                Matthew Swift
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated: