summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorRichard Ipsum <richard.ipsum@codethink.co.uk>2014-02-06 17:40:38 +0000
committerRichard Ipsum <richard.ipsum@codethink.co.uk>2014-02-12 17:51:22 +0000
commit736fda0beb6502f20923939e1c1df91e68b6919a (patch)
tree583dd5de9f9ef99be780e682b63dfb063554400a
parent3b0161527e6c90b48422f6e873a606534d769e9f (diff)
downloadtrove-setup-736fda0beb6502f20923939e1c1df91e68b6919a.tar.gz
Update ruleset
Allow users to change their own password
-rw-r--r--gitano-admin/rules/defines.lace3
-rw-r--r--gitano-admin/rules/selfchecks.lace2
2 files changed, 4 insertions, 1 deletions
diff --git a/gitano-admin/rules/defines.lace b/gitano-admin/rules/defines.lace
index ab49034..edc832f 100644
--- a/gitano-admin/rules/defines.lace
+++ b/gitano-admin/rules/defines.lace
@@ -19,7 +19,8 @@ define if_asanother as_user ~.
# Self-related operations
define op_whoami operation whoami
define op_sshkey operation sshkey
-define op_self anyof op_whoami op_sshkey
+define op_passwd operation passwd
+define op_self anyof op_whoami op_sshkey op_passwd
# Admin-related operations
diff --git a/gitano-admin/rules/selfchecks.lace b/gitano-admin/rules/selfchecks.lace
index 44e96bd..83ef778 100644
--- a/gitano-admin/rules/selfchecks.lace
+++ b/gitano-admin/rules/selfchecks.lace
@@ -11,3 +11,5 @@
allow "You may ask who you are" op_whoami
allow "You may manage your own ssh keys" op_sshkey
+
+allow "You may change your own password" op_passwd