Rob Crittenden 4ad8055341 Re-implement access control using an updated model. ... The new model is based on permssions, privileges and roles. Most importantly it corrects the reverse membership that caused problems in the previous implementation. You add permission to privileges and privileges to roles, not the other way around (even though it works that way behind the scenes). A permission object is a combination of a simple group and an aci. The linkage between the aci and the permission is the description of the permission. This shows as the name/description of the aci. ldap:///self and groups granting groups (v1-style) are not supported by this model (it will be provided separately). This makes the aci plugin internal only. ticket 445		2010-12-01 20:42:31 -05:00
..
install	Re-implement access control using an updated model.	2010-12-01 20:42:31 -05:00
plugins	Use Realm as certs subject base name	2010-11-18 15:09:31 -05:00
__init__.py	Run ipaserver under mod_wsgi	2010-03-01 20:22:22 -07:00
conn.py	Renamed ipa_server/ to ipaserver/ and tests/test_ipa_server/ to tests/test_ipaserver	2009-01-04 18:44:16 -07:00
ipaldap.py	Add LDAP upgrade over ldapi support.	2010-06-01 09:52:10 -04:00
ipautil.py	Remove (un)wrap_binary_data cruft from */ipautil.py	2010-01-28 14:26:29 -05:00
rpcserver.py	language as a list	2010-09-21 16:28:14 -04:00
servercore.py	Clean up some problems discovered with pylint and pychecker	2009-08-12 13:18:15 -04:00