goto done;
}
- if ( ! access_allowed( be, conn, op, e,
- password, NULL, ACL_AUTH, NULL ) )
- {
+ rc = access_allowed( be, conn, op, e,
+ password, NULL, ACL_AUTH, NULL );
+ if ( ! rc ) {
send_ldap_result( conn, op, rc = LDAP_INSUFFICIENT_ACCESS,
NULL, NULL, NULL, NULL );
goto done;
goto done;
}
- if ( ! access_allowed( be, conn, op, e,
- krbattr, NULL, ACL_AUTH, NULL ) )
- {
+ rc = access_allowed( be, conn, op, e,
+ krbattr, NULL, ACL_AUTH, NULL );
+ if ( ! rc ) {
send_ldap_result( conn, op, rc = LDAP_INSUFFICIENT_ACCESS,
NULL, NULL, NULL, NULL );
goto done;
goto done;
}
- if ( ! access_allowed( be, conn, op, e,
- ava->aa_desc, &ava->aa_value, ACL_COMPARE, NULL ) )
- {
+ rc = access_allowed( be, conn, op, e,
+ ava->aa_desc, &ava->aa_value, ACL_COMPARE, NULL );
+ if ( ! rc ) {
rc = LDAP_INSUFFICIENT_ACCESS;
goto return_results;
}
rc = LDAP_COMPARE_TRUE;
break;
}
-
}
return_results:
}
/* check parent for "children" acl */
- if ( ! access_allowed( be, conn, op, p,
- children, NULL, ACL_WRITE, NULL ) )
- {
+ rc = access_allowed( be, conn, op, p,
+ children, NULL, ACL_WRITE, NULL ) );
+
+ if ( ! rc ) {
rc = LDAP_INSUFFICIENT_ACCESS;
#ifdef NEW_LOGGING
LDAP_LOG ( OPERATION, ERR,
p = NULL;
- if ( ! rc )
- {
+ if ( ! rc ) {
rc = LDAP_INSUFFICIENT_ACCESS;
#ifdef NEW_LOGGING
LDAP_LOG ( OPERATION, ERR,
newSuperior = NULL; /* ignore newSuperior */
}
}
+
if ( newSuperior != NULL ) {
if ( newSuperior->bv_len ) {
np_dn = newSuperior;
#endif
/* check newSuperior for "children" acl */
- if ( !access_allowed( be, conn, op, np, children, NULL, ACL_WRITE, NULL ) ) {
+ rc = access_allowed( be, conn, op, np, children,
+ NULL, ACL_WRITE, NULL );
+
+ if( ! rc ) {
#ifdef NEW_LOGGING
LDAP_LOG ( OPERATION, DETAIL1,
"==>bdb_modrdn: no wr to newSup children\n", 0, 0, 0 );
np = NULL;
- if ( ! rc )
- {
+ if ( ! rc ) {
rc = LDAP_INSUFFICIENT_ACCESS;
#ifdef NEW_LOGGING
LDAP_LOG ( OPERATION, ERR,
projects / openldap / commitdiff