Return-Path: Delivered-To: apmail-directory-dev-archive@www.apache.org Received: (qmail 99399 invoked from network); 24 Apr 2006 12:31:23 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 24 Apr 2006 12:31:23 -0000 Received: (qmail 44469 invoked by uid 500); 24 Apr 2006 12:31:15 -0000 Delivered-To: apmail-directory-dev-archive@directory.apache.org Received: (qmail 44244 invoked by uid 500); 24 Apr 2006 12:31:15 -0000 Mailing-List: contact dev-help@directory.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Apache Directory Developers List" Delivered-To: mailing list dev@directory.apache.org Received: (qmail 44233 invoked by uid 99); 24 Apr 2006 12:31:15 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 Apr 2006 05:31:15 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received: from [209.237.227.198] (HELO brutus.apache.org) (209.237.227.198) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 Apr 2006 05:31:14 -0700 Received: from brutus (localhost.localdomain [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 1812E714293 for ; Mon, 24 Apr 2006 12:30:06 +0000 (GMT) Message-ID: <29773314.1145881806070.JavaMail.jira@brutus> Date: Mon, 24 Apr 2006 12:30:06 +0000 (GMT+00:00) From: "Emmanuel Lecharny (JIRA)" To: dev@directory.apache.org Subject: [jira] Commented: (DIRSERVER-606) ou=users, ou=system - user cannot see their own entry In-Reply-To: <1942518626.1144099366669.JavaMail.jira@ajax> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N [ http://issues.apache.org/jira/browse/DIRSERVER-606?page=3Dcomments#ac= tion_12376017 ]=20 Emmanuel Lecharny commented on DIRSERVER-606: --------------------------------------------- regarding your proposal : a) Yeah, we can do that. This is for RC2, and its better to have something = that works, even if you can read your password, than something that is badl= y broken. a-2) I agree with "minimal built-in rules". I used legacy, because it was s= omething which will be removed soon. I don't know when, may be in 1.1 or in= 1.0 b) Yes, we have to update the doc. Feel free to ask Alex about the intrica= cy of ACI usage with the newer AuthorizationService. As he wrote the code, = he is the one who know it the best. We sure need this doco if we want users= not to be puzzled as we are... Password things : I'm not very confortable with it. I don't like the fact f= or instance that I can read my passwords in Firefox. The problem is if you = can do that, then you will have to be parano=C3=AFd : each time you go to = have a copy, lock your computer... I don't see any occasion where clear pa= ssword need to be shown to the user, even if the files that contains the en= tries is not crypted (eh eh, another improvment ...). Well, this is another= problem, and we can fill a JIRA for that, too :) > ou=3Dusers, ou=3Dsystem - user cannot see their own entry > ----------------------------------------------------- > > Key: DIRSERVER-606 > URL: http://issues.apache.org/jira/browse/DIRSERVER-606 > Project: Directory ApacheDS > Type: Bug > Versions: 1.0-RC1 > Environment: JDK 1.4.1 > Tried both JXplorer, and from ACEGI security > Reporter: Marc Batchelor > Assignee: Stefan Zoerner > Priority: Critical > Attachments: patch.txt, patch_DIRSERVER-606_2.txt > > User binds to ApacheDS as a user under ou=3Dusers, ou=3Dsystem. The user = cannot see their own entry to get their own attributes. > Documentation states: Users cannot see other user entries under the 'ou= =3Dusers,ou=3Dsystem' entry. > Agreed and understood. But, the user, after binding with the directory, c= annot even find their own entry to get their own attributes.=20 --=20 This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira