[PATCH] s4-drs: Delete RODC filtered attributes from objects

Andrew Bartlett abartlet at samba.org
Wed Mar 24 22:02:12 MDT 2010


On Wed, 2010-03-24 at 17:47 +0200, Anatoliy Atanasov wrote:
> Hi Team,
> 
> I am working on the check for read-only database when we are RODC. I
> pushed the change here:
> http://git.samba.org/?p=anatoliy/anatoliy.git;a=commit;h=7004efe1a84f3f289f037f282005fd89ab4b5fe0
> Can somebody review it? I added a check in replmd_update_rpmd. The
> goal is to return a referral if RODC database is being modified. The
> result here is that ldb_module_send_referral doesn't work as I
> expected and what we return is Operational Error.

Have a look at the 'partitions' module for how to send referrals
correctly.  Here mdw did some work to send referrals, and I hope you
will be able to follow the same pattern.

In short, you need to send the referral, and the error back. 

Also, it is incorrect to do:

 req->op.search.scope == LDB_SCOPE_ONELEVEL ? "??base" : ""

When 'req' is a modify, not a search operation. 

Andrew Bartlett

-- 
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Cisco Inc.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100325/17c27a12/attachment.pgp>


More information about the samba-technical mailing list