Re: [PATCH] Add an ldapoption to disable chasing LDAP referrals

From: Peter Eisentraut <peter_e(at)gmx(dot)net>
To: James Sewell <james(dot)sewell(at)lisasoft(dot)com>
Cc: pgsql-hackers(at)postgresql(dot)org
Subject: Re: [PATCH] Add an ldapoption to disable chasing LDAP referrals
Date: 2013-07-02 12:46:44
Message-ID: 51D2CBB4.2070906@gmx.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-hackers

On 7/2/13 12:20 AM, James Sewell wrote:
> Hey All,
>
> This patch request grew from this post (of mine) to pgsql-general:
>
> http://www.postgresql.org/message-id/CABUevEzouAe-g1_OejaGujjMem675DNYStwyBp4d_Wz6Om+fxA@mail.gmail.com
>
> The patch adds another available LDAP option (ldapnochaseref) for
> search+bind mode in the pg_hba.conf fil. If set to 1 (0 is default) then
> it performs a ldap_set_option which disables chasing of any LDAP
> references which are returned as part of the search LDIF.

This appears to be the same as the "referrals" option in pam_ldap
(http://linux.die.net/man/5/pam_ldap) So it seems legitimate.

For consistency, I would name the option ldapreferrals={0|1}. I prefer
avoiding double negatives.

Do you know of a standard way to represent this option in an LDAP URL,
perhaps as an extension?

In response to

Responses

Browse pgsql-hackers by date

  From Date Subject
Next Message Andres Freund 2013-07-02 13:02:01 Re: MVCC catalog access
Previous Message Peter Eisentraut 2013-07-02 12:36:59 Re: Review: query result history in psql