[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#3921) authzTo/authzFrom syntax

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#3921) authzTo/authzFrom syntax
From: hyc@symas.com
Date: Sat, 6 Aug 2005 08:32:06 GMT

ando@sys-net.it wrote:
> Full_Name: Pierangelo Masarati
> Version: HEAD
> OS: irrelevant
> URL: ftp://ftp.openldap.org/incoming/
> Submission from: (NULL) (81.72.89.40)
> Submitted by: ando
>
>
> authzTo/authzFrom should have a specific syntax, so that they can be validated
> (early detection of configuration errors) and possibly prettified/normalized to
> ease and speed up their parsing any time they're evaluated (e.g., avoid repeated
> DN normalizations and so).
I don't think this is practical, but feel free to prove me wrong. The 
same issue arises with authz-regexp, as well as ACL clauses that accept 
regexp's. We don't really know what it means to normalize a regexp.

-- 
  -- Howard Chu
  Chief Architect, Symas Corp.  http://www.symas.com
  Director, Highland Sun        http://highlandsun.com/hyc
  OpenLDAP Core Team            http://www.openldap.org/project/

Prev by Date: (ITS#3920) inequality search filter omissions
Next by Date: Re: (ITS#3921) authzTo/authzFrom syntax
Index(es):
- Chronological
- Thread