Skip to content

Commit 50d8ee9

Browse files
authored
Merge pull request #2174 from tendstofortytwo/add-groups-to-docs
add documentation for `groups` in rights file
2 parents 69b265b + b932798 commit 50d8ee9

1 file changed

Lines changed: 11 additions & 0 deletions

File tree

DOCUMENTATION.md

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2562,13 +2562,24 @@ permissions: RW
25622562
user: .+
25632563
collection: {user}/[^/]+
25642564
permissions: rw
2565+
2566+
# Allow reading and writing the collection named "common" for people in
2567+
# certain LDAP groups
2568+
[groupcal]
2569+
groups: members,directors
2570+
collection: common
2571+
permission: rw
25652572
```
25662573
25672574
The titles of the sections are ignored (but must be unique). The keys `user`
25682575
and `collection` contain regular expressions, that are matched against the
25692576
username and the path of the collection. Permissions from the first
25702577
matching section are used. If no section matches, access gets denied.
25712578
2579+
The `groups` key can be used to provide a comma-separated list of LDAP groups
2580+
which should be matched for access. In case a section has both `user` and
2581+
`groups`, either one matching will allow access in that section.
2582+
25722583
The username is empty for anonymous users. Therefore, the regex `.+` only
25732584
matches authenticated users and `.*` matches everyone (including anonymous
25742585
users).

0 commit comments

Comments
 (0)