Issue 8573 - ldap* tools should be able to function w/o a conf file
Summary: ldap* tools should be able to function w/o a conf file
Status: VERIFIED FIXED
Alias: None
Product: OpenLDAP
Classification: Unclassified
Component: client tools (show other issues)
Version: 2.4.44
Hardware: All All
: --- normal
Target Milestone: 2.5.0
Assignee: OpenLDAP project
URL:
Keywords:
: 8540 (view as issue list)
Depends on:
Blocks:
 
Reported: 2017-01-23 23:43 UTC by Quanah Gibson-Mount
Modified: 2020-10-14 21:09 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this issue.
Description Quanah Gibson-Mount 2017-01-23 23:43:59 UTC 
Full_Name: Quanah Gibson-Mount
Version: 2.4.44
OS: N/A
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (47.208.148.26)


Right now, it is impossible to configure the ldap* command line tools so that
they function in major circumstances w/o also having a configuration file (I.e.,
ldap.conf, .ldaprc, etc).  For example, the ability to use startTLS with LDAP
requires such a file so that the CA file and/or cert path for the tool can be
defined.

The "-o" option should be expanded to cover additional configuration parameters
from the conf file, as has already been done with the network timeout parameter.
Comment 1 Quanah Gibson-Mount 2017-03-17 16:49:02 UTC 
moved from Incoming to Software Enhancements
Comment 2 Quanah Gibson-Mount 2017-09-06 23:46:29 UTC 
changed notes
Comment 3 Ondřej Kuzník 2018-06-11 14:19:15 UTC 
On Mon, Jan 23, 2017 at 11:43:59PM +0000, quanah@openldap.org wrote:
> Full_Name: Quanah Gibson-Mount
> Version: 2.4.44
> OS: N/A
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (47.208.148.26)
> 
> 
> Right now, it is impossible to configure the ldap* command line tools so that
> they function in major circumstances w/o also having a configuration file (I.e.,
> ldap.conf, .ldaprc, etc).  For example, the ability to use startTLS with LDAP
> requires such a file so that the CA file and/or cert path for the tool can be
> defined.
> 
> The "-o" option should be expanded to cover additional configuration parameters
> from the conf file, as has already been done with the network timeout parameter.

I have updated the documentation to extract the new options into
ldap.conf(5) and reference it from each tool instead. The commits at
https://github.com/mistotebe/openldap/tree/its8573-tables contain that
change.

-- 
Ondřej Kuzník
Senior Software Engineer
Symas Corporation                       http://www.symas.com
Packaged, certified, and supported LDAP solutions powered by OpenLDAP
Comment 4 Ondřej Kuzník 2018-06-22 14:57:10 UTC 
Other tests might need to use the ldaps urls added with ITS#8573, the
patch at https://github.com/mistotebe/openldap/tree/its8573-tables
makes them available to scripts and $CONFFILTER users.

-- 
Ondřej Kuzník
Senior Software Engineer
Symas Corporation                       http://www.symas.com
Packaged, certified, and supported LDAP solutions powered by OpenLDAP
Comment 5 OpenLDAP project 2018-07-09 17:05:36 UTC 
Added to master
Comment 6 Quanah Gibson-Mount 2018-07-09 17:05:36 UTC 
changed notes
changed state Open to Test
Comment 7 Quanah Gibson-Mount 2020-03-22 23:42:59 UTC 
*** Issue 8540 has been marked as a duplicate of this issue. ***