[Issue 9779] New: dynlist Negation filter on memberOf attribute doesn't work

9 Jan 2022


      https://bugs.openldap.org/show_bug.cgi?id=9779
Issue ID: 9779
           Summary: dynlist Negation filter on memberOf attribute doesn't
                    work
           Product: OpenLDAP
           Version: 2.5.5
          Hardware: All
                OS: Linux
            Status: UNCONFIRMED
          Keywords: needs_review
          Severity: normal
          Priority: ---
         Component: overlays
          Assignee: bugs@openldap.org
          Reporter: mail@andrejro.de
  Target Milestone: ---
Setup is according to documentation of slapo-dynlist to replace the old
memberOf overlay, which I only want to use for mapping static groupOfNames back
on memberOf= attributes of members.
dynlist-attrset groupOfNames labeledURI member+memberOf@groupOfNames
If I now have:
dn: cn=test,ou=Group,dc=example,dc=com
objectClass: groupOfNames
objectClass: top
cn: test
member: uid=test,ou=People,dc=example,dc=com
dn: uid=test,ou=People,dc=example,dc=com
objectClass: account
objectClass: top
cn: Test User
uid: test
dn: uid=test2,ou=People,dc=example,dc=com
objectClass: account
objectClass: top
cn: Test2 User
uid: test2
I expect for a search filter '(memberOf=cn=test,ou=Group,dc=example,dc=com)' to
return dn: "uid=test,ou=People,dc=example,dc=com" and for a search filter
'(!(memberOf=cn=test,ou=Group,dc=eample,dc=com)' to return dn:
"uid=test2,ou=People,dc=example,dc=com"
First operation with a positive search filter works, but I cannot get the
second case to work, even when requesting the memberOf attribute explictly as
return attribute.
-- 
You are receiving this mail because:
You are on the CC list for the issue.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[Issue 9779] New: dynlist Negation filter on memberOf attribute doesn't work