[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Quoted values in string DN

To: "Ramsay, Ron" <Ron.Ramsay@ca.com>
Subject: RE: Quoted values in string DN
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Mon, 18 Oct 2004 20:04:54 -0700
Cc: <ietf-ldapbis@OpenLDAP.org>
In-reply-to: <1395B4B334FCC143B36AF788E68B638101EA378D@ausyms21.ca.com>
References: <1395B4B334FCC143B36AF788E68B638101EA378D@ausyms21.ca.com>

At 06:39 PM 10/18/2004, Ramsay, Ron wrote:
>"cn=RL \"Bob\" Morgan,dc=example,dc=com" is not an escaping *within* DNs. In fact, if you pre-escape the quotes in the DN, you would probably have to write "cn=RL \\\"Bob\\\" Morgan,dc=example,dc=com"

maybe in C or other programming language, but I was talking
in English prose (such as in an email message like this):

If the distinguished value of the cn naming attribute is
        RL "Bob" Morgan
then Section 2 of RFC 2253 says the RDN is written:
        cn=RL \"Bob\" Morgan

>so I don't see that it helps!

Because one quote the (R)DN string in prose, e.g.
"cn=RL \"Bob\" Morgan", without ambiguity as to where
that string starts and stops.


>Ron
>
>-----Original Message-----
>From: owner-ietf-ldapbis@OpenLDAP.org
>[mailto:owner-ietf-ldapbis@OpenLDAP.org]On Behalf Of Kurt D. Zeilenga
>Sent: Tuesday, 19 October 2004 03:57
>To: Jim Sermersheim
>Cc: ietf-ldapbis@OpenLDAP.org; Ravi Kiran Jayanthi; Tom Doman;
>c.harding@opengroup.org
>Subject: Re: Quoted values in string DN
>
>
>At 09:52 AM 10/18/2004, Jim Sermersheim wrote:
>>I'm told that the VSLDAP test suite requires that v3 servers parse DN values containing quoted values.
>> 
>>I know the string dn bis document removed Section 4 from RFC 2253. Justification is given in <http://www.openldap.org/lists/ietf-ldapbis/200012/msg00065.html>http://www.openldap.org/lists/ietf-ldapbis/200012/msg00065.html. I have two questions:
>> 
>>1) can we summarize the justification, and add it to bullet #5 in Appendix B of string DN?
>
>In response to a previous comment (from Hallvard?), I plan to
>replace the bullet:
>- Replaced specification of additional requirements for LDAPv2
>  implementations which also support LDAPv3 (RFC 2253, Section 4)
>  with a statement (in Section 3) allowing recognition of
>  alternative string representations.
>
>with the following two:
>- Removed specification of additional requirements for LDAPv2
>implementations which also support LDAPv3 (RFC 2253, Section 4)
>as LDAPv2 is now Historic.
>- Allow recognition of alternative string representations.
>
>>2) why did we reserve the need to escape double quote characters (see DQUOTE in escaped, in the ABNF)?
>
>For two reasons.  1) To allow recognition of alternative string representations in which DQUOTEs are special.  2) To allow
>DQUOTEs (like <>s) to be used to quote whole DN strings (e.g., a
>DN string can be written "cn=RL \"Bob\" Morgan,dc=example,dc=com"
>without confusing the wrapping quotes as being part of the DN
>string).
>
>Kurt

References:
- RE: Quoted values in string DN
  - From: "Ramsay, Ron" <Ron.Ramsay@ca.com>

Prev by Date: RE: Quoted values in string DN
Next by Date: Re: A few question regarding schema
Index(es):
- Chronological
- Thread