[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#3480) back-sql and ACL issues

To: openldap-its@OpenLDAP.org
Subject: (ITS#3480) back-sql and ACL issues
From: ando@sys-net.it
Date: Tue, 11 Jan 2005 23:15:15 GMT

Full_Name: Pierangelo Masarati
Version: ALL
OS: irrelevant
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (81.72.89.40)
Submitted by: ando


In most cases, ACL checking features can only be partially exploited within
back-sql, because only the essential portions of the entries are computed for
each operation before calling access_allowed().  As a consequence, access
clauses like "dnattr" and so cannot be used if the appropriate attribute values
have not been collected.  A side effect is that the requested attribute
types/values affect access to the same entry.

Prev by Date: Re: (ITS#3421) Replication problem with slurpd
Next by Date: Re: (ITS#3415) HEAD ldapadd creates invalid link
Index(es):
- Chronological
- Thread