multi-valued ldap-group attributes in rlm_cache
Arran Cudbard-Bell
a.cudbardb at freeradius.org
Sat Aug 2 14:58:21 CEST 2014
>
> I can see rlm_ldap populate control:Ldap-Group:
>
> Sat Aug 2 12:12:55 2014 : Debug: Added control:ldap_xyz-Ldap-Group with value "abc"
> Sat Aug 2 12:12:55 2014 : Debug: Added control:ldap_xyz-Ldap-Group with value "def"
> [...]
>
> But it looks like rlm_cache only caches the first value:
>
> Sat Aug 2 12:12:56 2014 : Debug: (4) cache_xyz : Adding to cache entry:
> Sat Aug 2 12:12:56 2014 : Debug: (4) cache_xyz : control:ldap_xyz-Ldap-Group += &ldap_xyz-Ldap-Group -> 'abc'
>
> And the next cache lookup only shows the first value:
>
> Sat Aug 2 12:13:02 2014 : Debug: (9) cache_xyz : Merging cached control list:
> Sat Aug 2 12:13:02 2014 : Debug: (9) cache_xyz : ldap_xyz-Ldap-Group += 'abc'
>
> Is this supposed to work? I am using 3.0.4 rc1.
Yes, but I have a good idea why it's not.
So, one last call on multivalued attributes before I write the code.
For update {} sections people would prefer
update {
Foo += &Bar[*]
}
over
update {
Foo += &Bar
}
Even though LDAP multivalued is
update {
foo += 'bar'
}
Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 881 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140802/3d683171/attachment.pgp>
More information about the Freeradius-Users
mailing list