sgouvern / 389-ds-base

Forked from 389-ds-base 4 years ago
Clone
Source Code
GIT

0410819 Add strict DN syntax enforcement option.

Authored and Committed by nkinder 15 years ago
raw patch tree parent
6 files changed. 68 lines added. 1 lines removed.
ldap/ldif/template-dse.ldif.in
file modified
+1 -0
ldap/servers/plugins/syntaxes/dn.c
file modified
+16 -0
ldap/servers/slapd/config.c
file modified
+16 -0
ldap/servers/slapd/libglobs.c
file modified
+30 -0
ldap/servers/slapd/proto-slap.h
file modified
+2 -0
ldap/servers/slapd/slap.h
file modified
+3 -1 
    Add strict DN syntax enforcement option.
    
    The DN syntax has become more restrictive over time, and the
    current rules are quite strict. Strict adherence to the rules
    defined in RFC 4514, section 3, would likely cause some pain to
    client applications. Things such as spaces between the RDN
    components are not allowed, yet many people use them still since
    they were allowed in the previous specification outlined in RFC
    1779.
    
    To deal with the special circumstances around validation of the DN
    syntax, a configuration attribute is provided named
    nsslapd-dn-validate-strict. This configuration attribute will
    ensure that the value strictly adheres to the rules defined in RFC
    4514, section 3 if it is set to on. If it is set to off, the server
    will normalize the value before checking it for syntax violations.
    Our current normalization function was designed to handle DN values
    adhering to RFC 1779 or RFC 2253
file modified
+1 -0
file modified
+16 -0
file modified
+16 -0
file modified
+30 -0
file modified
+2 -0
file modified
+3 -1
Powered by Pagure 5.14.1
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.