Bug 457321 - LDAP shim does not properly handle unassociated group
members. Fixed in IDM 3.6.0/3.5.1 LDAP Driver Version 3.5.7 Patch 3
20090202

The bug is now appearing again in the LDAP Driver Version 3.5.11.
When deleting a member from a group, instead of dropping the
modification if the member is unassociated like it used to, it tries to
delete a value which is now null. This somehow results in the entire
group membership being deleted. See below.

14:39:28 8BC9FBA0 Drvrs: Portal (HA) ST:Oracle Portal LDAP (HA): LDAP
Modify:
cn=MCGL_USER_STAFF,cn=portal.081007.153152.6386750 00,cn=Groups,dc=mcgill,dc=ca
LDAPModification: (operation=delete,(LDAPAttribute:
{type='uniquemember', value=''}))
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:SubscriptionShim.execute()
returned:
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:
<nds dtdversion="2.0" ndsversion="8.x">
<source>
<product build="20100219_145032" instance="Oracle Portal LDAP (HA)"
version="3.5.11">Identity Manager Driver for LDAP</product>
<contact>Novell, Inc.</contact>
</source>
<output>
<status event-id="meta-dev#20110324183928#1#1" level="success"/>
</output>
</nds>
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:No input transformation
policies.
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:Applying schema mapping
policies to input.
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:Applying policy:
Oracle+Portal+Schema+Mapping.
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:Resolving association
references.
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:Processing returned document.
14:39:35 8BC9FBA0 Drvrs: Portal (HA) ST:Processing operation <status>
for .


--
pdoig
------------------------------------------------------------------------
pdoig's Profile: http://forums.novell.com/member.php?userid=5541
View this thread: http://forums.novell.com/showthread.php?t=435575