389-ds-base

Clone
Source Code
GIT

#49274 Memberof autoaddoc attribute shall accept only specific object classes
Closed: wontfix 3 years ago by spichugi. Opened 6 years ago by ilias95.

Closed: wontfix
Reopen Issue

Issue Description

Only "inetAdmin", "inetUser" and "nsMemberOf" are acceptable values for the "memberofautoaddoc" attribute of the memberof plugin.

This can be confirmed by checking the schema: grep -i -r -n -e 'memberof' /opt/dirsrv/share/dirsrv/schema/

However, memberof will accept any other valid object class as well.

Package Version and Platform

Git master on Fedora 25.

Steps to reproduce

Try setting any valid object class as a value for "memberofautoaddoc".
Eg. "posixaccount", "person", "extensibleObject", etc.

Actual results

The plugin won't complain.

Expected results

The plugin shall not allow this configuration and produce an error.

Hey @tbordaz I want to get your input on the solution to this.

I think the issue is that we validate the params by intercepting the MOD op, but the memberOf plugin isn't always online. Same is true of dse.ldif.

I wonder if the correct answer is that we add an objectClass for memberOf config, and then have the memberofautoaddoc / etc as a new syntax which validates the content is a valid objectClass, or is a valid attribute type known to schema. This way it would validate regardless of memberOf being online or not (we can't avoid dse.ldif to bypass though).

How does that sound?

Metadata Update from @firstyear:
- Custom field type adjusted to defect
6 years ago

Metadata Update from @mreynolds:
- Issue set to the milestone: 1.4 backlog
6 years ago

389-ds-base is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in 389-ds-base's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/389ds/389-ds-base/issues/2333

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Metadata Update from @spichugi:
- Issue close_status updated to: wontfix
- Issue status updated to: Closed (was: Open)
3 years ago

Login to comment on this ticket.

Metadata
None
None
None
None
None
None
None
None
Attachments 1
0001-Ticket-49274-memberOfAutoAddOC-shall-accept-o...
Attached 6 years ago View Comment
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.