[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#6468) ACLs in subordinate databases can be ignored

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#6468) ACLs in subordinate databases can be ignored
From: h.b.furuseth@usit.uio.no
Date: Tue, 2 Feb 2010 15:25:35 GMT
Auto-submitted: auto-generated (OpenLDAP-ITS)

Hold on.  Is the current behavior self-consistent, i.e. one could call
it an undocumented feature?  If so someone may have noticed this and
written their ACLs accordingly.  It's not friendly to change the
meaning of existing installations' ACLs in the middle of RE24.

OTOH if current behavior is broken even as a "feature", fix away.
E.g. if clients can choose which ACLs will apply in the subordinate
by picking a base DN inside vs outside the subordinate.

-- 
Hallvard

Prev by Date: (ITS#6468) ACLs in subordinate databases can be ignored
Next by Date: Re: (ITS#6468) ACLs in subordinate databases can be ignored
Index(es):
- Chronological
- Thread