Bug Description: Attribute list given by a client to ldapsearch
is first copied to op->o_searchattrs to respect the client input.
Then the attribute types are normalized and if the list contains
any forbidden attributes, they are removed from the list. When
the search result is returned, the internal normalized attribute
types are replaced with the original input op->o_searchattrs,
respectively. Since forbidden attributes are in op->o_searchattrs
but not in the internal attribute list, wrong type from copy is
associated to the value and returned to the client.
Fix Description: This patch removes the forbidden attribute
before copying the original attribute list to op->o_searchattrs.
Note: 1.3.1 and newer does not have this problem.
In an Winsync setup AD->DS (oneWay: fromWindows) we have the problem that the uniquemember attribute of groups will not updated if a user moved from on OU to an other.
Winsync will only update the user itself and not the groups where it is memberof.
This behaviour is similar like described in ticket 31 "manager attribute not updated".
Referential integrity plugin is enabled and setup for uniquemember, but I don't know if this work in a winsync environment.
Is this a know problem?
observed in version 184.108.40.206