[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problem with overlay uniqe

To: Michael Ströder <michael@stroeder.com>
Subject: Re: Problem with overlay uniqe
From: masarati@aero.polimi.it
Date: Thu, 11 Aug 2011 13:08:29 +0200 (CEST)
Cc: openldap-technical@openldap.org, Ruud Baart <r.j.baart@prompt.nl>
Importance: Normal
In-reply-to: <4E43AD14.5010705@stroeder.com>
References: <4E42EB4F.1060104@prompt.nl> <4E43AD14.5010705@stroeder.com>
User-agent: SquirrelMail/1.4.15

> Ruud Baart wrote:
>> I use slapd 2.4.23 (debian package) with some overlays: syncprov, unique
>> and
>> valsort. I have a problem with the unique overlay.
>>
>> This is the unique constraint:
>> olcUniqueURI:
>> ldap://ou=Workstations,ou=Devices,dc=example,dc=com/?uid?sub
>
> This is not a valid LDAP URL. Probably this should be this LDAP URL with
> emtpy
> hostport part:
>
> ldap:///ou=Workstations,ou=Devices,dc=example,dc=com?uid?sub
>
> See http://www.ietf.org/rfc/rfc4516.txt for syntax of LDAP URLs.

Good catch; please note that the original URI was valid, but it meant

$ ./libraries/libldap/urltest
'ldap://ou=Workstations,ou=Devices,dc=example,dc=com/?uid?sub'
generic LDAP url
PROTO: ldap
HOST: ou=Workstations,ou=Devices,dc=example,dc=com
PORT: 389
ATTRS:
	uid
SCOPE: sub
URL: ldap://ou=Workstations,ou=Devices,dc=example,dc=com:389/?uid?sub

This error would have been caught if unique_new_domain_uri() checked that
the host portion be empty, to indicate a local URI, as in many other
functionalities of OpenLDAP's slapd.  I suggest an ITS be filed to
strengthen misconfiguration detection.

p.

Follow-Ups:
- Re: Problem with overlay uniqe
  - From: Michael Ströder <michael@stroeder.com>

References:
- Problem with overlay uniqe
  - From: Ruud Baart <r.j.baart@prompt.nl>
- Re: Problem with overlay uniqe
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: Problem with overlay uniqe
Next by Date: Re: Problem with overlay uniqe
Index(es):
- Chronological
- Thread