abbra / slapi-nis

Forked from slapi-nis 6 years ago
Clone

00468e8 idviews: bind with original DN if ID view does not override uid attribute

Authored and Committed by abbra 8 years ago
    idviews: bind with original DN if ID view does not override uid attribute
    
    With ID Views in FreeIPA one can override different kinds of attributes,
    including the uid. When uid attribute is overriden, LDAP BINDs with
    DNs using new (overridden) uid are properly modified to reference the
    original (non-overridden) object.
    
    However, when uid attribute is not overridden, slapi-nis did mistakenly
    avoided to build a reference to the original object without ID view.
    This resulted in inability to do LDAP BIND as overriden DN with original
    uid attribute.
    
    Fix the issue by always processing a DN after removing ID view reference
    from it, whether RDN value (uid) was replaced or not.
    
    Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1301300
    
        
file modified
+2 -2
file modified
+12 -12