ITS#5572 retrieve main DB's ACL before relevant operations

author Howard Chu <hyc@openldap.org>

Tue, 11 Nov 2008 22:10:28 +0000 (22:10 +0000)

committer Howard Chu <hyc@openldap.org>

Tue, 11 Nov 2008 22:10:28 +0000 (22:10 +0000)
author Howard Chu <hyc@openldap.org>
Tue, 11 Nov 2008 22:10:28 +0000 (22:10 +0000)
committer Howard Chu <hyc@openldap.org>
Tue, 11 Nov 2008 22:10:28 +0000 (22:10 +0000)
diff --git a/servers/slapd/overlays/pcache.c b/servers/slapd/overlays/pcache.c

index 18da7fa4130be286455eca0f8f6dd25c65ce1360..81d195aa243bba624337494570865a4de03bb0c5 100644 (file)
--- a/servers/slapd/overlays/pcache.c
+++ b/servers/slapd/overlays/pcache.c
@@ -2316,6 +2316,9 @@ pcache_op_search(
                 return rs->sr_err;
         }
  
+       /* pickup runtime ACL changes */
+       cm->db.be_acl = op->o_bd->be_acl;
+
         tempstr.bv_val = op->o_tmpalloc( op->ors_filterstr.bv_len+1, op->o_tmpmemctx );
         tempstr.bv_len = 0;
         if ( filter2template( op, op->ors_filter, &tempstr, &filter_attrs,
diff --git a/servers/slapd/overlays/translucent.c b/servers/slapd/overlays/translucent.c

index 66d090a26ef91bf2c2d23db90a3a3a1d7f156a7b..e07d58b92854f8e2add12784ffb954e8a49f2b7b 100644 (file)
--- a/servers/slapd/overlays/translucent.c
+++ b/servers/slapd/overlays/translucent.c
@@ -432,6 +432,7 @@ static int translucent_modify(Operation *op, SlapReply *rs) {
  
         db = op->o_bd;
         op->o_bd = &ov->db;
+       ov->db.be_acl = op->o_bd->be_acl;
         rc = ov->db.bd_info->bi_entry_get_rw(op, &op->o_req_ndn, NULL, NULL, 0, &re);
         if(rc != LDAP_SUCCESS || re == NULL ) {
                 send_ldap_error((op), rs, LDAP_NO_SUCH_OBJECT,
@@ -629,6 +630,7 @@ static int translucent_compare(Operation *op, SlapReply *rs) {
  */
         db = op->o_bd;
         op->o_bd = &ov->db;
+       ov->db.be_acl = op->o_bd->be_acl;
         rc = ov->db.bd_info->bi_op_compare(op, rs);
         op->o_bd = db;
  
@@ -661,6 +663,7 @@ static int translucent_pwmod(Operation *op, SlapReply *rs) {
  */
         db = op->o_bd;
         op->o_bd = &ov->db;
+       ov->db.be_acl = op->o_bd->be_acl;
         rc = ov->db.bd_info->bi_entry_get_rw(op, &op->o_req_ndn, NULL, NULL, 0, &re);
         if(rc != LDAP_SUCCESS || re == NULL ) {
                 send_ldap_error((op), rs, LDAP_NO_SUCH_OBJECT,
@@ -1096,6 +1099,7 @@ static int translucent_search(Operation *op, SlapReply *rs) {
         cb.sc_private = &tc;
         cb.sc_next = op->o_callback;
  
+       ov->db.be_acl = op->o_bd->be_acl;
         tc.db = op->o_bd;
         tc.on = on;
         tc.orig = op->ors_filter;
@@ -1193,6 +1197,7 @@ static int translucent_bind(Operation *op, SlapReply *rs) {
  
         db = op->o_bd;
         op->o_bd = &ov->db;
+       ov->db.be_acl = op->o_bd->be_acl;
         rc = ov->db.bd_info->bi_op_bind(op, rs);
         op->o_bd = db;
author	Howard Chu <hyc@openldap.org>
	Tue, 11 Nov 2008 22:10:28 +0000 (22:10 +0000)
committer	Howard Chu <hyc@openldap.org>
	Tue, 11 Nov 2008 22:10:28 +0000 (22:10 +0000)
servers/slapd/overlays/pcache.c		patch \| blob \| history
servers/slapd/overlays/translucent.c		patch \| blob \| history