[Auth_ldap] question on multiple group directives
Dave Carrigan
dave at rudedog.org
Tue Mar 28 10:30:42 PST 2006
On Tuesday 28 March 2006 07:56, David Jones wrote:
> I don't think this is allowed, but would like confirmation/where its
> documented:
>
> <Location /ldap>
> AuthLDAPEnabled on
> etc..
> require group cn=group1,o=whatever
> require group cn=group2,o=whatever
> </Location>
>
> where the user is both a member of group1 AND group2
>
> [What about if the user is member of group1 OR group2?
> If a new group3 includes group1 and group2 that would work for OR?]
The require group statements are ORed, so membership in either group would
suffice.
--
Dave Carrigan
Seattle, WA, USA
dave at rudedog.org | http://www.rudedog.org/
UNIX-Apache-Perl-Linux-Firewalls-LDAP-C-C++-DNS-PalmOS-PostgreSQL-MySQL-Postfix
Dave is currently listening to Eric Clapton - Have You Ever Loved A Woman
(Crossroads)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: not available
Url : http://www.rudedog.org/pipermail/auth_ldap/attachments/20060328/f4f0aacc/attachment.pgp
More information about the Auth_ldap
mailing list