Need a change to the ACL code
Andrew Bartlett
abartlet at samba.org
Tue Mar 2 00:06:43 MST 2010
Nadezhda,
I need a hand with the ACL code, but I'm not sure what the status is
exactly. What are we using the code for at the moment?
Anyway, the change I need is to consider any change to the relative
distinguished name (be it via rename or addition) to be a modification
that needs to be checked.
I want to use the attached patch, and then to use this module for
OpenLDAP:
ftp://ftp.openldap.org/incoming/pierangelo-masarati-2009-08-03-rdnval.2.c
The challenge that gives is that I need to move the location in the
module stack of rdn_name, to keep behaviour consistent.
The background here is that when used with tdb, this change puts the
"rdn_name" module further down the stack - and so it does not create
modify requests for renames at the ACL module any more. When used with
a patched OpenLDAP, it hopefully allows OpenLDAP to update the "name"
attribute, so rdn_name isn't used at all. This means that the ACL
module needs to be updated to cope with this changed circumstance.
Thanks,
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Cisco Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: rdnval-use-in-samba.diff
Type: text/x-patch
Size: 2429 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100302/5ef412b2/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100302/5ef412b2/attachment.pgp>
More information about the samba-technical
mailing list