Apache Directory Project - [jira] Commented: (DIRSERVER-606) ou=users, ou=system - user cannot

This is Interesting: Free IT Magazines  
Home > Archive > Apache Directory Project > April 2006 > [jira] Commented: (DIRSERVER-606) ou=users, ou=system - user cannot





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author [jira] Commented: (DIRSERVER-606) ou=users, ou=system - user cannot
Emmanuel Lecharny (JIRA)

2006-04-24, 7:56 am

[ http://issues.apache.org/jira/brows...=3Dcomments#ac=
tion_12376017 ]=20

Emmanuel Lecharny commented on DIRSERVER-606:
---------------------------------------------

regarding your proposal :

a) Yeah, we can do that. This is for RC2, and its better to have something =
that works, even if you can read your password, than something that is badl=
y broken.

a-2) I agree with "minimal built-in rules". I used legacy, because it was s=
omething which will be removed soon. I don't know when, may be in 1.1 or in=
1.0

b) Yes, we have to update the doc. Feel free to ask Alex about the intrica=
cy of ACI usage with the newer AuthorizationService. As he wrote the code, =
he is the one who know it the best. We sure need this doco if we want users=
not to be puzzled as we are...

Password things : I'm not very confortable with it. I don't like the fact f=
or instance that I can read my passwords in Firefox. The problem is if you =
can do that, then you will have to be parano=C3=AFd : each time you go to =
have a copy, lock your computer... I don't see any occasion where clear pa=
ssword need to be shown to the user, even if the files that contains the en=
tries is not crypted (eh eh, another improvment ...). Well, this is another=
problem, and we can fill a JIRA for that, too

> ou=3Dusers, ou=3Dsystem - user cannot see their own entry
> -----------------------------------------------------
>
> Key: DIRSERVER-606
> URL: http://issues.apache.org/jira/browse/DIRSERVER-606
> Project: Directory ApacheDS
> Type: Bug

> Versions: 1.0-RC1
> Environment: JDK 1.4.1
> Tried both JXplorer, and from ACEGI security
> Reporter: Marc Batchelor
> Assignee: Stefan Zoerner
> Priority: Critical
> Attachments: patch.txt, patch_DIRSERVER-606_2.txt
>
> User binds to ApacheDS as a user under ou=3Dusers, ou=3Dsystem. The user =
cannot see their own entry to get their own attributes.
> Documentation states: Users cannot see other user entries under the 'ou=
=3Dusers,ou=3Dsystem' entry.
> Agreed and understood. But, the user, after binding with the directory, c=
annot even find their own entry to get their own attributes.=20

--=20
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secur...nistrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira


Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com