Brad Nicholes wrote:
I took a quick look at this patch and it seems to work well as long as all of the listed attributes are OR'ed together. I don't have a good suggestion yet, but is there a way to implement the logic so that attributes could be also AND'ed together? Or even a NOT-EQUAL operation?
I think the best way to do this probably is instead of saying "require ldap-attribute" you say "require LDAP filter".
In other words, like this:
require filter (objectclass=specialPerson)
or
require filter (host=somehost.com)
This supports more complicated stuff, like this:
require filter (&(objectclass=specialPerson)(host=somehost.com))
Regards, Graham --
smime.p7s
Description: S/MIME Cryptographic Signature
