[Date Prev][Date Next] [Chronological] [Thread] [Top]

Suggestions for back-passwd enhancements (ITS#40)



I was looking through back-passwd search.c and I've a few oddities.

1)  Bad DN
	The DN returned appears to be:
		"pw_name@SUFFIX"

	Instead of something like:
  		uid=pw_name, SUFFIX

2)  	uid attribute is not part of objectclass 'person'
3)	gecos field processing is incomplete.


Here are a few suggestions for anyone interested in updating this
code.

1)      change objectclass to 'account', return both 'account' and 'person',
	return to 'posixAccount', or make it an option.

2)	modify dn to be:
		attribute=pw_name, SUFFIX

		(hardcode the attribute to 'uid' or make it an option)

3)	Construct full name from gecos, add as "cn" and "description"
4)	Add full gecos field as "description"
5)	extract 'telephone' and other info from gecos field (if person)
6)	populate 'host' (w/ hostname)
7)	populate 'l'ocality with domainname

This would be a good project for someone wanting to get their feet wet in slapd code.

NOTE: I consider this backend to be used solely for 'demonstration purposes.'
It would need a lot more work to useful (such as actually supporting 'bind').

Kurt