[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP as an address book for MS Outlook

To: Victor Sudakov <vas@mpeks.tomsk.su>
Subject: Re: OpenLDAP as an address book for MS Outlook
From: Philip Guenther <guenther+ldaptech@sendmail.com>
Date: Sun, 9 Dec 2012 23:51:45 -0800
Cc: openldap-technical@openldap.org
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/simple; d=sendmail.com; s=tls.dkim; t=1355125919; bh=OwF0UjWlYlXNeDN+QgXp03VkxGzG3Or8tukozoVNchw=; h=Date:From:To:cc:Subject:In-Reply-To:Message-ID:References: MIME-Version:Content-Type:Content-Transfer-Encoding; b=kDzojwr3ieNsL6l9AhCYjofc5kOgh4KQ//OR8ziTa9L+x3VUOuMIontIJarIPak9E fVzmg1cm/mhwSV8RZjERS6s4Tz5NQvgYdNF/gRl9NVvDw8XH0b6XSkhzMiCoCktUO1 P5lkiY7UrcPY1oBjGL9MU1SCPQKxyKVP/VHt4+2c=
In-reply-to: <20121210044912.GA82414@admin.sibptus.tomsk.ru>
References: <20121207091339.GA94619@admin.sibptus.tomsk.ru> <CAK_oV4-5cTDT3fics-0aSSMZ7jxhGQAQJZ06uxSh1Hdt4OYmYw@mail.gmail.com> <20121207095116.GA95235@admin.sibptus.tomsk.ru> <50C1D96A.9010000@acision.com> <20121207124716.GA97649@admin.sibptus.tomsk.ru> <50C25AD4.7080606@stroeder.com> <20121208162206.GA12596@admin.sibptus.tomsk.ru> <50C39B29.5000707@stroeder.com> <20121210015909.GA79542@admin.sibptus.tomsk.ru> <6B53316910B350BB6C38B1D5@[192.168.1.26]> <20121210044912.GA82414@admin.sibptus.tomsk.ru>
User-agent: Alpine 2.00 (BSO 1167 2008-08-23)

On Mon, 10 Dec 2012, Victor Sudakov wrote:
> You have lost me. The bad Outlook request is not about filtering, it's 
> about sorting (ordering). It is ordering that is denied by the server. 
> There is nothing about ordering in the link you have given.

Let's look back at the message you're replying to, Michael Ströder's:

> Since you insist on using a rather unusable feature you should probably 
> dive into RFC 2891 and look at this:
> 
>       SortKeyList ::= SEQUENCE OF SEQUENCE {
>                  attributeType   AttributeDescription,
>                  orderingRule    [0] MatchingRuleId OPTIONAL,
>                  reverseOrder    [1] BOOLEAN DEFAULT FALSE }
> 
> The LDAP client can (optionally) define which ordering matching rule to 
> use for a particular attribute type. So ask M$ to send 'orderingRule' in 
> the SSS request control if they do not send it yet. I'm too lazy to 
> check in the PCAP data you posted before.

That "orderingRule [0] MatchingRuleId OPTIONAL" line means that after each 
attributeType to sort on, the client can indicate what orderingRule should 
be used to do the ordering for that attribute.

So, it would seem that a client should be able to portably request sorting 
on the cn attribute in a case-insensitive fashion by sending the control 
with that optional orderingRule filled in.  That should work against any 
server that supports the control and the desired case-insensitive rule.

It should be possible to test this against OpenLDAP with something like:

	ldapsearch -E sss=cn:caseIgnoreOrderingMatch '(cn=*)' cn

(plus whatever binding option you need, of course)

However, that's not what Outlook does.  To quote the dump you showed:
            Control
                controlType: 1.2.840.113556.1.4.473 (sortKeyList)
                criticality: True
                SortKeyList: 1 item
                    SortKeyList item
                        attributeType: cn
            Control
                controlType: 2.16.840.1.113730.3.4.9 (LDAP_CONTROL_VLVREQUEST VLV)
                controlValue: 308400000012020100020127a08400000006020101020100

Note that an orderingRule is not given, thus unnecessarily making the 
client dependent on the server extending a standard schema.

Philip Guenther

Follow-Ups:
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>

References:
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Clément OUDOT <clem.oudot@gmail.com>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Ondrej Kuznik <ondrej.kuznik@acision.com>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Michael Ströder <michael@stroeder.com>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Michael Ströder <michael@stroeder.com>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- Re: OpenLDAP as an address book for MS Outlook
  - From: Victor Sudakov <vas@mpeks.tomsk.su>

Prev by Date: Re: OpenLDAP as an address book for MS Outlook
Next by Date: Re: OpenLDAP as an address book for MS Outlook
Index(es):
- Chronological
- Thread