[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#3633) slapd.access man page inaccuracy

peter@adpm.de wrote:

>Full_Name: Peter Marschall
>Version: 2.2.24
>OS: Linux
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (
>slapd.access(5) does not list "attr" as an aliasfor "attrs" in the <who> part of
>an ACL.
The fact that the code "erroneously" allows something doesn't mean that 
it has to be reflected in the documentation.  Earlier versions did a

    if ( strncmp( left, "attr", 4) == 0 )

so "attrlifeisbeatiful=userPassword" would have matched.  When we 
decided to rationalize that check, we wanted that directive to be 
"attrs" only, but there were many significant deployments using "attr" 
so we decided to leave both and advertize only "attrs".  I'd rather 
change the code to refuse "attr", or, as a fallthru solution, leave the 
manpage as is (maybe adding a warning about "attr" being deprecated).


>This patch should fix it:
>--- doc/man/man5/slapd.access.5 2005-04-05 16:17:46.368330284 +0200
>+++ doc/man/man5/slapd.access.5 2005-04-05 16:20:01.474599840 +0200
>@@ -74,7 +74,7 @@
>        *
>        [dn[.<dnstyle>]=<DN>]
>        [filter=<ldapfilter>]
>-       [attrs=<attrlist>[ val[.<style>]=<attrval>]]
>+       [attr[s]=<attrlist>[ val[.<style>]=<attrval>]]
> .fi
> .LP
> The wildcard

    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497