[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Update Referrals (ITS#1051)

To: openldap-its@OpenLDAP.org
Subject: Re: Update Referrals (ITS#1051)
From: Kurt@OpenLDAP.org
Date: Tue, 13 Mar 2001 20:18:17 GMT

The application did not provide a rebind callback hence
the chasing was anonymously.  This is not an OpenLDAP
bug.
        Kurt

At 05:46 PM 3/1/01 +0000, rjbubon@requisite.com wrote:
>Full_Name: Robert J. Bubon
>Version: 2.0.7
>OS: FreeBSD
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (207.239.243.55)
>
>
>Test environment is one master and one slave.
>
>When slave receives an update, it sends a referral back to client.
>This is shown by the log.
>
>Mar  1 10:05:43 tomcat01 slapd[6380]: daemon: conn=2 fd=16 connection from
>IP=10.10.1.99:3365 (IP=:: 389) accepted.
>Mar  1 10:05:43 tomcat01 slapd[6380]: conn=2 op=0 BIND
>dn="UID=DBM,DC=REQUISITE,DC=COM" method=128
>Mar  1 10:05:43 tomcat01 slapd[6380]: conn=2 op=0 RESULT tag=97 err=0 text=
>Mar  1 10:05:43 tomcat01 slapd[6380]: conn=2 op=1 ADD
>dn="UID=FOOBAR,DC=SUPPLIER_DB,DC=REQUISITE,DC=COM"
>Mar  1 10:05:43 tomcat01 slapd[6380]: conn=2 op=1 RESULT tag=105 err=9
>text=Referral: ldap://obrien.corp.requisite.com
>Mar  1 10:05:43 tomcat01 slapd[6380]: conn=2 op=2 UNBIND
>Mar  1 10:05:43 tomcat01 slapd[6380]: conn=-1 fd=16 closed
>
>The master receives the referral and trys to process the request. But it's
>BIND DN is "" aka anonymous login; which has no access rights. This is shown by
>the
>log.
>
>Mar  1 10:05:43 obrien slapd[6578]: daemon: conn=13 fd=9 connection from
>IP=10.10.1.99:3366 (IP=:: 389) accepted.
>Mar  1 10:05:43 obrien slapd[6578]: conn=13 op=0 BIND dn="" method=128
>Mar  1 10:05:43 obrien slapd[6578]: conn=13 op=0 RESULT tag=97 err=0 text=
>Mar  1 10:05:43 obrien slapd[6578]: conn=13 op=1 ADD
>dn="UID=FOOBAR,DC=SUPPLIER_DB,DC=REQUISITE,DC=COM"
>Mar  1 10:05:43 obrien slapd[6578]: conn=13 op=1 RESULT tag=105 err=50 text=no
>write access to parent
>Mar  1 10:05:43 obrien slapd[6578]: conn=13 op=2 UNBIND
>Mar  1 10:05:43 obrien slapd[6578]: conn=-1 fd=9 closed
>
>Problem: Where did the BIND DN go?
>
>The client application is PHP with OpenLDAP. The libraries are from OpenLDAP
>2.0.7

Prev by Date: Re: password change (ITS#1050)
Next by Date: RANDFILE environment variable not working (ITS#1069)
Index(es):
- Chronological
- Thread