[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: Update Referrals (ITS#1051)
The application did not provide a rebind callback hence
the chasing was anonymously. This is not an OpenLDAP
bug.
Kurt
At 05:46 PM 3/1/01 +0000, rjbubon@requisite.com wrote:
>Full_Name: Robert J. Bubon
>Version: 2.0.7
>OS: FreeBSD
>URL: ftp://ftp.openldap.org/incoming/
>Submission from: (NULL) (207.239.243.55)
>
>
>Test environment is one master and one slave.
>
>When slave receives an update, it sends a referral back to client.
>This is shown by the log.
>
>Mar 1 10:05:43 tomcat01 slapd[6380]: daemon: conn=2 fd=16 connection from
>IP=10.10.1.99:3365 (IP=:: 389) accepted.
>Mar 1 10:05:43 tomcat01 slapd[6380]: conn=2 op=0 BIND
>dn="UID=DBM,DC=REQUISITE,DC=COM" method=128
>Mar 1 10:05:43 tomcat01 slapd[6380]: conn=2 op=0 RESULT tag=97 err=0 text=
>Mar 1 10:05:43 tomcat01 slapd[6380]: conn=2 op=1 ADD
>dn="UID=FOOBAR,DC=SUPPLIER_DB,DC=REQUISITE,DC=COM"
>Mar 1 10:05:43 tomcat01 slapd[6380]: conn=2 op=1 RESULT tag=105 err=9
>text=Referral: ldap://obrien.corp.requisite.com
>Mar 1 10:05:43 tomcat01 slapd[6380]: conn=2 op=2 UNBIND
>Mar 1 10:05:43 tomcat01 slapd[6380]: conn=-1 fd=16 closed
>
>The master receives the referral and trys to process the request. But it's
>BIND DN is "" aka anonymous login; which has no access rights. This is shown by
>the
>log.
>
>Mar 1 10:05:43 obrien slapd[6578]: daemon: conn=13 fd=9 connection from
>IP=10.10.1.99:3366 (IP=:: 389) accepted.
>Mar 1 10:05:43 obrien slapd[6578]: conn=13 op=0 BIND dn="" method=128
>Mar 1 10:05:43 obrien slapd[6578]: conn=13 op=0 RESULT tag=97 err=0 text=
>Mar 1 10:05:43 obrien slapd[6578]: conn=13 op=1 ADD
>dn="UID=FOOBAR,DC=SUPPLIER_DB,DC=REQUISITE,DC=COM"
>Mar 1 10:05:43 obrien slapd[6578]: conn=13 op=1 RESULT tag=105 err=50 text=no
>write access to parent
>Mar 1 10:05:43 obrien slapd[6578]: conn=13 op=2 UNBIND
>Mar 1 10:05:43 obrien slapd[6578]: conn=-1 fd=9 closed
>
>Problem: Where did the BIND DN go?
>
>The client application is PHP with OpenLDAP. The libraries are from OpenLDAP
>2.0.7