[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Returning single values from multivalued attributes

To: d.w.chadwick@salford.ac.uk
Subject: Re: Returning single values from multivalued attributes
From: Sean Mullan <sean.mullan@Sun.COM>
Date: Thu, 05 Aug 1999 17:12:38 -0400
Cc: ietf-ldapext@netscape.com
Organization: Sun Microsystems
References: <E11CSYE-0003jx-00@carbon.btinternet.com>
Resent-date: Thu, 05 Aug 1999 14:13:02 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"Jc1b0B.A.szC.X5fq3"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Hi David,

I'd like to work on an LDAP draft with you as I believe this is very
important. (Actually, I was planning to write a draft but I was a
bit discouraged by the lack of response to my message on 7/30). Please 
let me know how you want to coordinate this.

I think that 2 drafts are probably needed, one describing a control for the
matchedValuesOnly feature and another for describing the X.509 certificate
and CRL matching rules as new LDAP matching rules.

Thanks,
--Sean

David Chadwick wrote:
> 
> This topic has been briefly discussed on this list before (30 July),
> but no conclusions were reached. Briefly the situation is that X.500
> DAP allows a user to search an entry and only request that matched
> values are returned from a multi-valued attribute rather than all
> attributes. LDAP only allows all or no values to be returned.
> 
> There has also been a request in the PKIX group that LDAP should
> allow a single user certificate to be returned (the one that matches
> the users filter), rather than all the users certificates.
> 
> I believe that once clients start to retreive schema definitions they
> will also want matched values only to be returned.
> 
> There are a couple of approaches this group can take
> 
> i) say that this is not a significant problem and ignore it. Let the
> client sort out the value it wants
> 
> ii) say that it is a significant problem and try to fix it via a new
> matchedValuesOnly control ID. (I can volunteer to write the ID if
> people are interested in it)
> 
> What do people think about this?
> 
> David
> 
> ***************************************************
> 
> David Chadwick
> IS Institute, University of Salford, Salford M5 4WT
> Tel +44 161 295 5351  Fax +44 161 745 8169
> Mobile +44 790 167 0359
> *NEW* Email D.W.Chadwick@salford.ac.uk *NEW*
> Home Page  http://www.salford.ac.uk/its024/chadwick.htm
> Understanding X.500  http://www.salford.ac.uk/its024/X500.htm
> X.500/LDAP Seminars http://www.salford.ac.uk/its024/seminars.htm
> Entrust key validation string MLJ9-DU5T-HV8J
> 
> ***************************************************

-- 
Sean Mullan			Email: sean.mullan@sun.com
Sun Microsystems Laboratories	Tel:   (781) 442-0926	
One Network Drive		Fax:   (781) 442-1692
Burlington, MA 01803-0902

Follow-Ups:
- Re: Returning single values from multivalued attributes
  - From: Ella Paton Bassett <egardner@mitre.org>
- Re: Returning single values from multivalued attributes
  - From: David Chadwick <d.w.chadwick@salford.ac.uk>

References:
- Returning single values from multivalued attributes
  - From: David Chadwick <d.w.chadwick@salford.ac.uk>

Prev by Date: Re: Returning single values from multivalued attributes
Next by Date: Re: Returning single values from multivalued attributes
Index(es):
- Chronological
- Thread