[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: slapo-rwm and rewriteRules

To: openldap-software@openldap.org
Subject: Re: slapo-rwm and rewriteRules
From: "Raphaël 'SurcouF' Bordet" <surcouf@debianfr.net>
Date: Wed, 14 May 2008 16:02:09 +0200
In-reply-to: <4829E4AB.9060605@sys-net.it>
References: <1209979804.31829.3.camel@rpvbpi> <Pine.SOC.4.64.0805051116560.15401@toolbox.rutgers.edu> <1210167347.21197.5.camel@rpvbpi> <48223660.10303@sys-net.it> <1210673185.18526.8.camel@rpvbpi> <4829E4AB.9060605@sys-net.it>

Le mardi 13 mai 2008 Ã 20:57 +0200, Pierangelo Masarati a Ãcrit :
> RaphaÃl 'SurcouF' Bordet wrote:
> 
> > Thanks for this tips, it's works fine.
> > 
> >> database        relay
> >> suffix          "o=Example,c=US"
> >> relay           "dc=example,dc=com"
> >> overlay         rwm
> >> rwm-rewriteEngine       on
> >> rwm-rewriteMap          ldap mail2uid
> >> 			"ldap://:9011/dc=example,dc=com?uid?sub";
> >> rwm-rewriteMap          ldap uid2mail
> >> 			"ldap://:9011/dc=example,dc=com?mail?sub";
> >>
> >> rwm-rewriteContext      default
> >> rwm-rewriteRule         "^(.+,)?(mail=[^,]+),o=Example,c=US$"
> >> 			"$1uid=${mail2uid($2)},dc=example,dc=com" ":@I"
> > 
> > Why this rule is needed ?
> > 
> >> rwm-rewriteRule         "^(.+,)?o=Example,c=US$"
> >> 			"$1dc=example,dc=com" ":@I"
> > 
> > This rule isn't needed when I'm using "massage" argument for "relay"
> > directive.
> 
> The "massage" directive automatically instantiates the equivalent of 
> this rule, and more.  I rather configure those rules manually to be able 
> to fine-grain control the order of execution of rules.
> 
> >> rwm-rewriteContext      searchEntryDN
> >> rwm-rewriteRule         "^(.+,)?(uid=[^,]+),dc=example,dc=com$"
> >> 			"$1mail=${uid2mail($2)},o=Example,c=US" ":@I"
> > 
> > This rule work fine. I've tried to do the same rule for departmentNumber
> > and departmentUID RDN change but slapd doesn't start if I set this
> > following rules : 
> > 
> > rwm-rewriteContext      searchEntryDN
> > rwm-rewriteRule		"^(.+,)?(uid=[^,]+),dc=example,dc=com$"
> > 			"$1mail={uid2mail($2)},o=Example,c=US" ":I"
> > rwm-rewriteRule		"^(.+,)?(departmentUID=[^,]+),dmdName=[^,]+,dc=[a-zA-Z]+,dc=example,dc=com$"
> > 			"$1departmentNumber={uid2number($2)},ou=services,o=Example,c=US$"
> > ":@I"
> 
> Did you define the uid2number map?

Yes I've theses following directives : 

rwm-rewriteMap          ldap number2uid
"ldap://:389/dc=example,dc=com?departmentUID?sub";
rwm-rewriteMap          ldap uid2number
"ldap://:389/dc=example,dc=com?departmentNumber?sub";

> >> rwm-rewriteRule         "^(.+,)?dc=example,dc=com$"
> >> 			"$1o=Example,c=US" ":@I"
> > 
> > ïThis rule isn't needed when I'm using "massage" argument for "relay"
> > directive.
> 
> See above.
> 
> > Last question : can I modify returned attribute value using rwm ?
> 
> Only DN-valued attributes.  It (intentionally) doesn't work for other attrs.

Ok. It's easy to enable ?


-- 
RaphaÃl 'SurcouF' Bordet

Follow-Ups:
- Re: slapo-rwm and rewriteRules
  - From: Pierangelo Masarati <ando@sys-net.it>

References:
- slapo-rwm and rewriteRules
  - From: "Raphaël 'SurcouF' Bordet" <surcouf@debianfr.net>
- Re: slapo-rwm and rewriteRules
  - From: Aaron Richton <richton@nbcs.rutgers.edu>
- Re: slapo-rwm and rewriteRules
  - From: "Raphaël 'SurcouF' Bordet" <surcouf@debianfr.net>
- Re: slapo-rwm and rewriteRules
  - From: Pierangelo Masarati <ando@sys-net.it>
- Re: slapo-rwm and rewriteRules
  - From: "Raphaël 'SurcouF' Bordet" <surcouf@debianfr.net>
- Re: slapo-rwm and rewriteRules
  - From: Pierangelo Masarati <ando@sys-net.it>

Prev by Date: [Fwd: How to Sync.....?????]
Next by Date: Re: slapo-rwm and rewriteRules
Index(es):
- Chronological
- Thread