At 10:24 AM 11/26/2005, Peter Marschall wrote:
>When the input is "cn: <joe" (note the space between : and <) the LDIF
>is accepted with cn having "<joe" (without the quotes).
>
>IMHO this behaviour is the correct one.
I note that per RFC 2849, the string "cn: <joe" is an invalid
attrval-spec as SAFE-INIT-CHAR excludes '<'. It is, of course,
reasonable for an implementation to be liberal in what it accepts.
I see two reasonable ways to be liberal. One is to treat it has
you have, another would be to treat it as one would "cn:<joe".
I prefer the former way.
Additionally, I note that in:
dn: cn="<[EMAIL PROTECTED]",ou=site,o=org
the DN string does not strictly adhere to the requirements
of draft-ietf-ldapbis-dn-xx.txt (approved as a Proposed
Standard, but not yet published), though implementations may
be liberal and accepting such strings. The quoting of naming
values is an LDAPv2ism. In LDAPv3, one of the following
(or variants) should be used:
dn: [EMAIL PROTECTED],ou=site,o=org
dn: cn=\<[EMAIL PROTECTED],ou=site,o=org
Kurt
