The ACIs for DNS are not editable from the web UI because the Metadata for the attributes is unavailable.
Assigning to jzeleny since he is already looking at the DNS plugin
What key are you using to fetch dns from the metadata? The "dns" key is for the deprecated plugin. I believe you want the "dnszone" key.
Can you please be a little more specific here? I looked at the WebUI (page "DNS zone details"), output of the ipa dnszone-show and ldif subtree idnsname=<zone_name>,cn=dns,dc=idm,dc=lab,dc=bos,dc=redhat,dc=com . I still have no clue what ACIs are you referring to. Perhaps if you can give me an example WebUI page, where I could see something similar. Thanks
look at the aciattrs code in baseldap.py. The list of attrs is not right for dns2
Permission metadata for the 'type' enumeration has 'dns' in it. This needs to be replaced with dnsrecord, dnszone, and any other entities that we care about.
Fixed in patch prior to 12c67b9
Metadata Update from @admiyo: - Issue assigned to jzeleny - Issue set to the milestone: FreeIPA 2.0 - 2011/01 (cleanup)
Login to comment on this ticket.