LDAP security lib cannot retrieve permission of nested file scopes for 389 DS

Description

I am trying to setup the permissions of nested file scopes (ex. f1::f11) in my 389 DS using ECLWatch. After I set the permissions, I refresh the permission page. The page still shows no permission for those nested file scopes. But, I can see the permissions been set using Apache Directory Studio. By tracing the code of the LDAP security library, I found that the ldap_search_ext_s() called in the getSecurityDescriptorsScope() returns no permission. A wrong filter (f11f1) may be used when calling ldap_search_ext_s(). I hardcoded a filter (f11) and the ldap_search_ext_s() does return the permissions.

Conclusion

None

Attachments

Activity

Show:

Kanghua Wang April 26, 2023 at 8:30 PM

CC: @Russ Whitehead

Fixed

Pinned fields

Click on the next to a field label to start pinning.

Details
Components
LDAP
Assignee
Russ Whitehead
Reporter
Kanghua Wang(Deactivated)
Priority
Minor
Fix versions
9.0.8
Pull Request URL
https://github.com/hpcc-systems/HPCC-Platform/pull/17313

Created April 26, 2023 at 8:27 PM

Updated May 10, 2023 at 9:01 AM

Resolved May 10, 2023 at 9:01 AM

LDAP security lib cannot retrieve permission of nested file scopes for 389 DS

Description

Conclusion

Attachments

Activity

Kanghua Wang April 26, 2023 at 8:30 PM

DetailsComponentsLDAPAssigneeRuss WhiteheadRuss WhiteheadReporterKanghua WangKanghua Wang(Deactivated)PriorityMinorFix versions9.0.8Pull Request URLhttps://github.com/hpcc-systems/HPCC-Platform/pull/17313

Details

Components

Assignee

Reporter

Priority

Fix versions

Pull Request URL

Details
Components
LDAP
Assignee
Russ Whitehead
Reporter
Kanghua Wang(Deactivated)
Priority
Minor
Fix versions
9.0.8
Pull Request URL
https://github.com/hpcc-systems/HPCC-Platform/pull/17313