HI!
I'm trying to configure proxy authz with 2.4.24 without luck testing with ldapwhoami -X.
Now I wonder if attribute 'authzTo' is now handled as X-ORDERED [1]. Unfortunately the subschema subentry does not contain a attribute type description for 'authzTo'. The server adds prefix "{0}" to my authzTo attribute value.
Ciao, Michael.
Michael Ströder wrote:
I'm trying to configure proxy authz with 2.4.24 without luck testing with ldapwhoami -X.
Now I wonder if attribute 'authzTo' is now handled as X-ORDERED [1]. Unfortunately the subschema subentry does not contain a attribute type description for 'authzTo'. The server adds prefix "{0}" to my authzTo attribute value.
Yes, schema_prep.c contains:
/* access control externals */ { "authzTo", "( 1.3.6.1.4.1.4203.666.1.8 " "NAME ( 'authzTo' 'saslAuthzTo' ) " "DESC 'proxy authorization targets' " "EQUALITY authzMatch " "SYNTAX 1.3.6.1.4.1.4203.666.2.7 " "X-ORDERED 'VALUES' " "USAGE distributedOperation )",
Ciao, Michael.
openldap-technical@openldap.org
-
Michael Ströder