[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: commit: ldap/servers/slapd/overlays sssvlv.c

To: OpenLDAP Commit <openldap-commit2devel@openldap.org>
Subject: Re: commit: ldap/servers/slapd/overlays sssvlv.c
From: Howard Chu <hyc@symas.com>
Date: Thu, 30 Jul 2009 17:51:16 -0700
In-reply-to: <200907242209.n6OM9uUb004868@cantor.openldap.org>
References: <200907242209.n6OM9uUb004868@cantor.openldap.org>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; rv:1.9.1b5pre) Gecko/20090630 SeaMonkey/2.0a1pre Firefox/3.0.3

hyc@OpenLDAP.org wrote:

Update of /repo/OpenLDAP/pkg/ldap/servers/slapd/overlays

Modified Files:
	sssvlv.c  1.10 ->  1.11

One thing we haven't addressed formally is the behavior of back-ldap whenhandling request controls. In some cases back-ldap is being used as a fullproxy and is intended to be transparent, so everything it receives from aclient should be sent directly to the remote server. Other times it's actingas part of a larger tree, where some superior in the DIT should be fieldingthe controls and back-ldap should only be forwarding vanilla requests to theremote. As a third case, it may be a full proxy, but the remote server doesn'tsupport certain features, so slapd should still handle them locally and onlysend plain requests onward. We need some clear configuration mechanism toexpress these situations.


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Prev by Date: Re: commit: ldap/libraries/libldap tls_o.c
Index(es):
- Chronological
- Thread