Hi,
I'm trying to design a complex set of acl's with quid_ldap_group.
My present setup
external_acl_type ldap_group1 %LOGIN path/to/squid_ldap_group -f <filters>
-h <host> -Z
external_acl_type ldap_group2 %LOGIN path/to/squid_ldap_group ......
acl day time M-F
acl morning time h9:m15-h11:m45
acl evening time h15:m30-h18:m30
acl earlymorningtea ldap_group1 EarlyMorningTea
acl sundowner ldap_group2 SunDowner
http_access allow day AND morning AND earlymorningtea
http_access allow day AND evening AND sundowner
In this setup EarlyMorningTea and SunDowner are attribute values. The
defined filters are ok with ldapsearch, but still I can't get access,
while a simple design with only one acl works fine, i.e.
http_access allow earlymorningtea
and only one definition of an external_acl_type gives a login, when
connecting a URL.
-Dieter
-- Dieter Kluenter | Systemberatung Tel:040.64861967 | Fax: 040.64891521 mailto: dkluenter@schevolution.com http://www.schevolution.com/tourReceived on Wed Jan 22 2003 - 05:00:19 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:47 MST