kanidm

mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 04:27:02 +01:00

History

Firstyear 07b9ca8939 Allow group managers to modify entry-managed-by (#3272 ) When we added entry-managed-by, we allowed it to be set on group creation but not post-group-creation. The idea was to delegate ownership of the group. However, this has the obvious trap that an account group like idm_admins can't alter entry-managed-by post creation, needing the use of the admin account which has access control privs, or a delete and recreate of the entry. Since the idm admin could delete and recreate the group with a new entry manager, there is functionally no difference to allowing them to modify the entry-managed-by here of low priv groups. This changes the group manager access control by default to allow this.		2024-12-10 03:49:57 +00:00
..
core	Cleanup of println and other outputs (#3266 )	2024-12-04 15:13:14 +10:00
daemon	Cleanup of println and other outputs (#3266 )	2024-12-04 15:13:14 +10:00
lib	Allow group managers to modify entry-managed-by (#3272 )	2024-12-10 03:49:57 +00:00
lib-macros	OAuth2 Token Type (#3008 )	2024-08-25 23:30:20 +00:00
testkit	20240927 SCIM put (#3151 )	2024-11-30 06:56:17 +00:00
testkit-macros	CLI integration test beginnings (#2261 )	2023-10-30 06:10:54 +00:00
builder.sh	1399 cleanup reorg (#1412 )	2023-03-01 13:10:52 +10:00
Dockerfile	Remove WASM (#3148 )	2024-10-26 17:19:13 +10:00