[389-commits] ldap/servers
Nathan Kinder
nkinder at fedoraproject.org
Thu Jan 13 20:23:25 UTC 2011
ldap/servers/slapd/connection.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
New commits:
commit d2727584285d7920dfdb37e2c5bbcfadd939ca8c
Author: Nathan Kinder <nkinder at redhat.com>
Date: Thu Jan 13 11:56:21 2011 -0800
Bug 481195 - Missing op type in log when password change required
When a password change is required, non-password change operations
are rejected with err=53. The access log currently doesn't list
anything about the operation type in the access log. This is
somewhat by design as we want to do as little processing as possible
for rejected operations. To be consistent with other code that
does an early reject of operations (such as siabling anonymous
access or SSF restrictions), we should explicitly log these as an
"UNPROCESSED OPERATION".
diff --git a/ldap/servers/slapd/connection.c b/ldap/servers/slapd/connection.c
index d3b3286..519546b 100644
--- a/ldap/servers/slapd/connection.c
+++ b/ldap/servers/slapd/connection.c
@@ -481,7 +481,7 @@ connection_need_new_password(const Connection *conn, const Operation *op, Slapi_
slapi_add_pwd_control ( pb, LDAP_CONTROL_PWEXPIRED, 0);
slapi_log_access( LDAP_DEBUG_STATS, "conn=%" NSPRIu64 " op=%d %s\n",
pb->pb_conn->c_connid, pb->pb_op->o_opid,
- "need new password" );
+ "UNPROCESSED OPERATION - need new password" );
send_ldap_result( pb, LDAP_UNWILLING_TO_PERFORM,
NULL, NULL, 0, NULL );
r= 1;
More information about the 389-commits
mailing list