Commit 0d089621 authored by Quanah Gibson-Mount's avatar Quanah Gibson-Mount
Browse files

ITS#5440

parent d831d315
...@@ -25,6 +25,7 @@ OpenLDAP 2.4.9 Engineering ...@@ -25,6 +25,7 @@ OpenLDAP 2.4.9 Engineering
Fixed slapd-bdb entryinfo state if db_lock fails (ITS#5455) Fixed slapd-bdb entryinfo state if db_lock fails (ITS#5455)
Fixed slapd-config attribute publishing (ITS#5383) Fixed slapd-config attribute publishing (ITS#5383)
Fixed slapd-ldap connection handler (ITS#5404) Fixed slapd-ldap connection handler (ITS#5404)
Fixed slapd-meta connections on error (ITS#5440)
Fixed slapo-auditlog unnecessary syscall (ITS#5441) Fixed slapo-auditlog unnecessary syscall (ITS#5441)
Fixed slapo-refint dnSubtreeMatch (ITS#5427) Fixed slapo-refint dnSubtreeMatch (ITS#5427)
Fixed slapo-refint global referential integrity (ITS#5428) Fixed slapo-refint global referential integrity (ITS#5428)
......
...@@ -139,11 +139,12 @@ If set before any target specification, it affects all targets, unless ...@@ -139,11 +139,12 @@ If set before any target specification, it affects all targets, unless
overridden by any per-target directive. overridden by any per-target directive.
.TP .TP
.B pseudoroot-bind-defer {NO|yes} .B pseudoroot-bind-defer {YES|no}
This directive, when set to This directive, when set to
.BR yes , .BR yes ,
causes the authentication to the remote servers with the pseudo-root causes the authentication to the remote servers with the pseudo-root
identity to be deferred until actually needed by subsequent operations. identity to be deferred until actually needed by subsequent operations.
Otherwise, all binds as the rootdn are propagated to the targets.
.TP .TP
.B quarantine <interval>,<num>[;<interval>,<num>[...]] .B quarantine <interval>,<num>[;<interval>,<num>[...]]
......
...@@ -802,7 +802,7 @@ meta_back_db_config( ...@@ -802,7 +802,7 @@ meta_back_db_config(
{ {
if ( argc != 2 ) { if ( argc != 2 ) {
Debug( LDAP_DEBUG_ANY, Debug( LDAP_DEBUG_ANY,
"%s: line %d: \"[pseudo]root-bind-defer {FALSE|true}\" takes 1 argument\n", "%s: line %d: \"[pseudo]root-bind-defer {TRUE|false}\" takes 1 argument\n",
fname, lineno, 0 ); fname, lineno, 0 );
return( 1 ); return( 1 );
} }
...@@ -818,7 +818,7 @@ meta_back_db_config( ...@@ -818,7 +818,7 @@ meta_back_db_config(
default: default:
Debug( LDAP_DEBUG_ANY, Debug( LDAP_DEBUG_ANY,
"%s: line %d: \"[pseudo]root-bind-defer {FALSE|true}\": invalid arg \"%s\".\n", "%s: line %d: \"[pseudo]root-bind-defer {TRUE|false}\": invalid arg \"%s\".\n",
fname, lineno, argv[ 1 ] ); fname, lineno, argv[ 1 ] );
return 1; return 1;
} }
......
...@@ -99,6 +99,10 @@ meta_back_db_init( ...@@ -99,6 +99,10 @@ meta_back_db_init(
return -1; return -1;
} }
/* set default flags */
mi->mi_flags =
META_BACK_F_DEFER_ROOTDN_BIND;
/* /*
* At present the default is no default target; * At present the default is no default target;
* this may change * this may change
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment