[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Test operations

To: David Boreham <david_list@boreham.org>
Subject: Re: Test operations
From: Morteza Ansari <morteza@infoblox.com>
Date: Fri, 19 Nov 2004 18:21:16 -0800
Cc: OpenLDAP Devel <openldap-devel@OpenLDAP.org>
In-reply-to: <0a5001c4ce48$85ac8660$fd529145@mtbrook.bozemanpass.com>
References: <419DD514.9020809@linagora.com> <0a5001c4ce48$85ac8660$fd529145@mtbrook.bozemanpass.com>
User-agent: Mozilla/5.0 (Macintosh; U; PPC Mac OS X Mach-O; en-US; rv:1.7) Gecko/20040616

I definitely second this, SunDS also supports this control (I am not sure if the two implementations are 100% compatible though). Converging on this would make app's developers job easier.


Cheers,
Morteza

David Boreham wrote:

Now I'm looking to write an extended operation based on the standard, ACI or AACLs access model to allow operations testing.

There was a 'get effective rights' extended operation
defined in the old IETF access control work:
http://www.watersprings.org/pub/id/draft-ietf-ldapext-acl-model-01.txt
I _think_ that what you are proposing is either similar or identical
to the get effective rights operation.

At least a few LDAP servers implement something like this, e.g. :
http://enterprise.netscape.com/docs/directory/621/relnotes/ger.html

Follow-Ups:
- Re: Test operations
  - From: Howard Chu <hyc@symas.com>

References:
- Test operations
  - From: Sébastien Bahloul <bahloul@linagora.com>
- Re: Test operations
  - From: "David Boreham" <david_list@boreham.org>

Prev by Date: ElectricFence patches
Next by Date: Re: Test operations
Index(es):
- Chronological
- Thread