Uploaded image for project: 'OpenDJ'
  1. OpenDJ
  2. OPENDJ-6881

Review default ACI policies shipped with DS and its profiles

    Details

      Description

      While reviewing https://stash.forgerock.org/projects/OPENDJ/repos/opendj/pull-requests/5020 it became clear that many of our existing default ACIs, including those used by profiles, are badly placed (global instead of located with their data), arbitrary (e.g. include pre-read, but not assertion control), duplicate other ACIs (CTS includes ACIs for StartTLS), etc.

      This JIRA can be closed once we have reviewed and cleaned up the various ACIs that we provide in a freshly installed server.

        Attachments

          Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. OPENDJ-7284 AM profiles: cts profile in 7 does not come with the minimal ACIs

          • Major - Major loss of function.
          • Done
          is related to

          Bug - A problem which impairs or prevents the functions of the product. OPENDJ-7276 Monitor user cannot read monitoring data

          • Blocker - Blocks development and/or testing work, production could not run.
          • Done

          New Feature - A new feature of the product, which has yet to be developed. OPENDJ-7355 Provide a "proxied-server" setup profile for servers that sit behind a proxy

          • Major - Major loss of function.
          • QA Backlog

          Improvement - An improvement or enhancement to an existing feature or task. OPENDJ-7260 Allow controls and extended ops to be specified by aliases in ACIs

          • Major - Major loss of function.
          • QA Backlog
          relates to

          Bug - A problem which impairs or prevents the functions of the product. OPENDJ-4109 The ldappasswordmodify command fails when requested through a directory proxy server

          • Major - Major loss of function.
          • Dev backlog

          Task - A task that needs to be done. OPENDJ-6957 Update documentation to clarify access in evaluation profile vs. production

          • Critical - Crashes, loss of data, severe memory leak.
          • Done

          Task - A task that needs to be done. OPENDJ-7207 Retest the distribution example

          • Critical - Crashes, loss of data, severe memory leak.
          • Done
          mentioned in

          Page Loading...

          Page Loading...

            Activity

              People

              • Assignee:
                matthew Matthew Swift
                Reporter:
                matthew Matthew Swift
                Dev Assignee:
                Matthew Swift
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated: