[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: (ITS#4197) DynList not return attributes



On Tue, 2005-11-22 at 13:58 -0800, Jason Lin wrote: 
> Here is the LDIF for a dynamic group:
> 
> # Wiki Users, LDAP, groups, uci.edu
> # Wiki Users, LDAP, groups, uci.edu
> dn: cn=Wiki Users,ou=LDAP,ou=groups,dc=uci,dc=edu
> objectClass: top
> objectClass: groupOfURLs
> cn: Wiki Users
> memberURL: ldap:///ou=people,dc=uci,dc=edu?displayName?sub?(ou=ADCOM SERVICES)
> 
> I don't know how much do you need from configuration file.  I think this
> is the part you need:
> 
> include         /usr/local/openldap-2.3.11/etc/openldap/schema/core.schema
> include
> /usr/local/openldap-2.3.11/etc/openldap/schema/cosine.schema
> include
> /usr/local/openldap-2.3.11/etc/openldap/schema/inetorgperson.sch
> ema
> include
> /usr/local/openldap-2.3.11/etc/openldap/schema/dyngroup.schema
> 
> 
> overlay         dynlist
> dynlist-oc      groupOfURLs
> dynlist-ad      memberURL
> 
> 
> 
> Result is:
> 
> # Wiki Users, LDAP, groups, uci.edu
> dn: cn=Wiki Users,ou=LDAP,ou=groups,dc=uci,dc=edu
> objectClass: top
> objectClass: groupOfURLs
> cn: Wiki Users
> memberURL: ldap:///ou=people,dc=uci,dc=edu?displayName?sub?(ou=ADCOM SERVICES)
> displayName: AMIR HASHMANI
> 
> 
> It only retrieve one result for displayName, while I am sure there are
> 50+ more.
> 
> if I have:
> 
> # Wiki Users, LDAP, groups, uci.edu
> dn: cn=Wiki Users,ou=LDAP,ou=groups,dc=uci,dc=edu
> objectClass: top
> objectClass: groupOfURLs
> cn: Wiki Users
> memberURL: ldap:///ou=people,dc=uci,dc=edu?mail?sub?(ou=ADCOM SERVICES)
> 
> The result will back with 50+ mail addresses as expected.
> 
> Is this enough information?

The fact that "you're sure there are more" may or may not be
authoritative enough to determine if there's a bug in the code.  I'd ask
you two more checks:

1) manually run the two searches that dynlist would run:

ldapsearch [options] -b "ou=people,dc=uci,dc=edu" -s sub \
	"(ou=ADCOM SERVICES)" displayName

and

ldapsearch [options] -b "ou=people,dc=uci,dc=edu" -s sub \
	"(ou=ADCOM SERVICES)" mail

and see what happens; post the results provided you hide any sensitive
info (e.g. anonymize the mail addresses)

2) if (1) does confirm the issue, send (maybe an upload to OpenLDAP's
ftp, in incoming/, with a link in a reply to this message may be a good
choice) a log of slapd at "-d -1", just in case.

p.




Ing. Pierangelo Masarati
Responsabile Open Solution

SysNet s.n.c.
Via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
------------------------------------------
Office:   +39.02.23998309          
Mobile:   +39.333.4963172
Email:    pierangelo.masarati@sys-net.it
------------------------------------------