[Date Prev][Date Next]
Re: (ITS#6468) ACLs in subordinate databases can be ignored
Hold on. Is the current behavior self-consistent, i.e. one could call
it an undocumented feature? If so someone may have noticed this and
written their ACLs accordingly. It's not friendly to change the
meaning of existing installations' ACLs in the middle of RE24.
OTOH if current behavior is broken even as a "feature", fix away.
E.g. if clients can choose which ACLs will apply in the subordinate
by picking a base DN inside vs outside the subordinate.