brett.maxfield(a)gmail.com wrote:
Full_Name: Brett Maxfield
Version: 2.4.12 release
OS: Solaris 5.10
URL:
ftp://ftp.openldap.org/incoming/
Submission from: (NULL) (203.18.108.167)
There is a bug that stops rwm-map being used to hide attributes, eg :
database ldap
suffix "c=AU"
uri "ldap://<parent ip>:<parent port>/c=AU"
overlay rwm
lastmod off
# attribute maps (ok except for final "rwm-map attribute *" map)
rwm-map attribute cn *
rwm-map attribute sn *
rwm-map attribute mail *
rwm-map attribute c *
rwm-map attribute o *
rwm-map attribute ou *
# does not like this, it stops any entries being returned
#rwm-map attribute *
# objectclass maps (ok)
rwm-map objectclass top *
rwm-map objectclass country *
rwm-map objectclass organization *
rwm-map objectclass organizationalRole *
rwm-map objectclass organizationalPerson *
rwm-map objectclass organizationalUnit *
rwm-map objectclass *
Not clear what the problem is, now. The above configuration seems to
work as intended as far as attribute mapping is concerned. The fact
that "rwm-map objectclass *" no longer kills the objectClass attribuet
was fixed some time ago (the fix is in 2.4.12). What kills the allowed
objectClass values is a bug in evaluating what values are preserved. If
you don't put any "rwm-map objectclass" rule, it works as expected.
I'm fixing this other bug.
p.
Ing. Pierangelo Masarati
OpenLDAP Core Team
SysNet s.r.l.
via Dossi, 8 - 27100 Pavia - ITALIA
http://www.sys-net.it
-----------------------------------
Office: +39 02 23998309
Mobile: +39 333 4963172
Fax: +39 0382 476497
Email: ando(a)sys-net.it
-----------------------------------