From 22b774efb21a5bfd180739b39d979896307afa62 Mon Sep 17 00:00:00 2001
From: Richard Ipsum <richard.ipsum@codethink.co.uk>
Date: Wed, 5 Feb 2014 15:50:52 +0000
Subject: Update ruleset

Allow users to change their own password
---
 skel/gitano-admin/rules/defines.lace    | 3 ++-
 skel/gitano-admin/rules/selfchecks.lace | 2 ++
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/skel/gitano-admin/rules/defines.lace b/skel/gitano-admin/rules/defines.lace
index e72f598..95e729e 100644
--- a/skel/gitano-admin/rules/defines.lace
+++ b/skel/gitano-admin/rules/defines.lace
@@ -9,7 +9,8 @@ define if_asanother as_user ~.
 # Self-related operations
 define op_whoami operation whoami
 define op_sshkey operation sshkey
-define op_self anyof op_whoami op_sshkey
+define op_passwd operation passwd
+define op_self anyof op_whoami op_sshkey op_passwd
 
 # Admin-related operations
 
diff --git a/skel/gitano-admin/rules/selfchecks.lace b/skel/gitano-admin/rules/selfchecks.lace
index 300bb91..e30e557 100644
--- a/skel/gitano-admin/rules/selfchecks.lace
+++ b/skel/gitano-admin/rules/selfchecks.lace
@@ -3,3 +3,5 @@
 allow "You may ask who you are" op_whoami
 
 allow "You may manage your own ssh keys" op_sshkey
+
+allow "You may change your own password" op_passwd
-- 
cgit v1.2.1