DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=31352>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=31352 RFE, Bind to LDAP server with browser supplier user/pass ------- Additional Comments From [EMAIL PROTECTED] 2004-10-18 10:09 ------- I haven't checked the code, but I'm not sure this is entirely correct. The end user only needs read access to 'self' in order to return the required success code for the search part of the auth operation, preventing search on the rest of the user accounts. Search access to the groups is a different question though; one could create an ACI for each group entry, providing access only by its own group members, but I'm guessing that's a little too clunky. Either way, the security issues are surmountable, and worth it for the gain. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
