[Date Prev][Date Next] [Chronological] [Thread] [Top]

(ITS#4698) authz-regexp matches twice on same dse



Full_Name: Adam pordzik
Version: 2.3.27
OS: FreeBSD 5-STABLE
URL: ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (80.171.35.164)


authz-regexp
        uid=([^,]+),cn=[^,]+,cn=auth
        ldap:///dc=example,dc=org??sub?(|(cn=$1)(uid=$1))

Below dc=example,dc=org there is a DSE with same value for uid and cn, which I
can't bind to with SASL. Since Authentication against this entry works after its
cn-attributes rename (or deletition of same-valued cn) works, as also agianst
other found entries, I assueme this is due to twice matching the same entry.