kanidm

mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 12:37:00 +01:00

History

Firstyear 07b9ca8939 Allow group managers to modify entry-managed-by (#3272 ) When we added entry-managed-by, we allowed it to be set on group creation but not post-group-creation. The idea was to delegate ownership of the group. However, this has the obvious trap that an account group like idm_admins can't alter entry-managed-by post creation, needing the use of the admin account which has access control privs, or a delete and recreate of the entry. Since the idm admin could delete and recreate the group with a new entry manager, there is functionally no difference to allowing them to modify the entry-managed-by here of low priv groups. This changes the group manager access control by default to allow this.		2024-12-10 03:49:57 +00:00
..
benches	Remove WASM (#3148 )	2024-10-26 17:19:13 +10:00
src	Allow group managers to modify entry-managed-by (#3272 )	2024-12-10 03:49:57 +00:00
build.rs	20240221 2489 cleanup api v1 (#2573 )	2024-02-27 09:25:02 +00:00
Cargo.toml	Remove WASM (#3148 )	2024-10-26 17:19:13 +10:00
PROFILING.md	Docs rework (#2919 )	2024-07-23 02:21:56 +00:00