Using the above server configuration, any authenticated (objectClass=person) under ou=people,dc=example,dc=com is allowed to access the content - regardless of whether or not they are added as a uniqueMember on the groupOfUniqueNames: cn=employees,ou=groups,dc=example,dc=com.
I noticed that if I add require user "cn=some_user"; satisfy any; this behaviour is corrected (only the group members are allowed through ).
I'm wondering if this might have something to do with the configuration defaulting to require valid_user;.
Thank you very much for writing this module! I believe I may have encountered a bug.
Example of Issue
Using the above server configuration, any authenticated
(objectClass=person)
underou=people,dc=example,dc=com
is allowed to access the content - regardless of whether or not they are added as auniqueMember
on thegroupOfUniqueNames: cn=employees,ou=groups,dc=example,dc=com
.I noticed that if I add
require user "cn=some_user"; satisfy any;
this behaviour is corrected (only the group members are allowed through ).I'm wondering if this might have something to do with the configuration defaulting to
require valid_user;
.