[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Issues regarding LDAP Control



Kurt,

I agree with most everything you wrote except for one thing - see <TJH> ...
</TJH> below.

Regards,
Tim Hahn

Internet: hahnt@us.ibm.com
Internal: Timothy Hahn/Endicott/IBM@IBMUS or IBMUSM00(HAHNT)
phone: 607.752.6388     tie-line: 8/852.6388
fax: 607.752.3681



                                                                                                                                          
                      "Kurt D. Zeilenga"                                                                                                  
                      <Kurt@OpenLDAP.org>         To:       ietf-ldapbis@OpenLDAP.org                                                     
                      Sent by:                    cc:                                                                                     
                      owner-ietf-ldapbis@O        Subject:  Issues regarding LDAP Control                                                 
                      penLDAP.org                                                                                                         
                                                                                                                                          
                                                                                                                                          
                      03/13/2002 12:11 PM                                                                                                 
                                                                                                                                          
                                                                                                                                          



Here are a few issues I've found in review 4.12 of [Protocol]
and past discussions (many on LDAPext) regarding controls.


>4.1.12. Controls
>
>   A control is a way to specify extension information. Controls which
>   are sent as part of a request apply only to that request and are not
>   saved.

This likely should be generalized to apply to both request
and response controls.  Maybe something like:
   Controls which are sent as part of a LDAP PDU apply
   only to that PDU and are not saved.
<TJH>
I guess I see this as "overly restrictive".  Why couldn't some control,
specified as a part of one request, have "semantics" that made the
effect of the control apply to other requests that come later in
the connection stream?  If I'm reading the clarification right,
it sounds like this would be DIS-allowed since the control that
was sent as part of one LDAP PDU would "apply" to other PDUs.
</TJH>