On 10/21/2021 6:06 PM, Howard Chu wrote:
You should change this configuration to use 2.5 dynlist's memberOf support.
Ah, it seems I stupidly didn't look at the examples at the bottom of the
man page 8-/.
I'm not using any dynamic groups, so I guess the example relevant to me is:
dynlist-attrset groupOfURLs memberURL member+memberOf@groupOfNames
which is described as "This example extends the dynamic memberOf feature
to add the memberOf attribute to all the members of both static and
dynamic groups".
I don't have any dynamic groups, so no objects with the class
groupOfURLs will contain a memberURL attribute. So what exactly would
this do? Hmm. I tried it and it seems to work. Wow, you can even search
by memberOf now, you couldn't do that before, nice.
How does this get triggered? Previously, if I searched for a user, it
would match on the object class for the user and expand the memberURL
dynamically, filling in the memberOf attribute. What makes the overlay
add in the attributes when I search for a user, as the group isn't
referenced? Perhaps some source code spelunking is in order :).
This appears to solve my problem, but I am still curious why the config
that worked fine under 2.4 blew up under 2.5.
Thanks much...
