[Date Prev][Date Next] [Chronological] [Thread] [Top]

ACL's using filter substring search problem (ITS#2023)

To: openldap-its@OpenLDAP.org
Subject: ACL's using filter substring search problem (ITS#2023)
From: curt@uwm.edu
Date: Wed, 14 Aug 2002 02:35:46 GMT

Full_Name: Curtis J.Blank
Version: 2.0.23-53
OS: Linux 2.4.18
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (66.222.3.143)


I'm trying to apply ACL's using filters and I get a segmentation fault when I
try and use a substring search, I'm not sure if it's OpenLDAP or me. It happens
when I use "attr=*S*", it seems the first asterisk right after the equal sign is
causing it. If I remove the asterisk the daemon starts just fine but then the
filter doesn't do what I what it to. Here is the ACL:

access to
             filter=(&(employeeType=*S*)(studentDirectoryWithhold=Y))
             attrs=ctCalXItemId,employeeType,studentDirectoryWithhold,staffDirectoryRelease,homephone,homePostalAddress,postalAdd
ress,title,roomNumber,buildingName,o,ou,sn,givenName,cn,uid,mail,mailHost,mailLocalAddress,mailRoutingAddress,telephoneNumber,object
class,entry
        by
                self write
        by
                anonymous auth


I've also tried to give access to requests from a particular machine but that
doesn't seem to work either, here is the ACL:

access to
		*
	by
		domain="cstcal01\.uwm\.edu" write

I tried it with and without the double quotes and with a leading ".*" (dot
asterisk), all to no avail. 

Any and all help would be greatly appreciated. If these are rookie errors just
point me to some documentation and I'll figure it out. I've already read section
in the 2.0 documentation and the filter RFC (RFC2554) and according to what I've
read I thought these should work.

Thanks,

-Curt Blank

Prev by Date: RE: access violation in slapd (userCerficate search) (ITS#2004)
Next by Date: Ldap Rebind and referral
Index(es):
- Chronological
- Thread