[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#6523) idassert marks proxyAuthz as non-critical

To: openldap-its@OpenLDAP.org
Subject: (ITS#6523) idassert marks proxyAuthz as non-critical
From: masarati@aero.polimi.it
Date: Wed, 14 Apr 2010 19:34:08 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

Full_Name: Pierangelo Masarati
Version: HEAD/re24
OS: irrelevant
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (129.72.141.24)
Submitted by: ando


RFC 4370 requires the criticality flag to be present and set to TRUE.  I also
note that slapd by default tolerates this behavior, and provides the disallow
proxy_authz_non_critical directive to behave in strict accordance with RFC
4370.

I've introduced a corresponding proxy-authz-[non-]critical flag in idassert.

p.

Prev by Date: Re: (ITS#6518) Slapd-ldap proxy between replica and mirror
Next by Date: Re: (ITS#6513) dynacl/aci fails on searches with attributes
Index(es):
- Chronological
- Thread