172683 – Search filter does not work on physical entries within views

Bug 172683 - Search filter does not work on physical entries within views

Summary: Search filter does not work on physical entries within views

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	389
Classification:	Retired
Component:	Server - Plugins
Sub Component:
Version:	7.1
Hardware:	i686
OS:	Linux
Priority:	medium
Severity:	high
Target Milestone:	---
Assignee:	Jim Whitehurst
QA Contact:	Viktor Ashirov
Docs Contact:
URL:
Whiteboard:	1.0.2
Depends On:
Blocks:	183369
TreeView+	depends on / blocked

Reported:	2005-11-08 11:19 UTC by Dirk Husung
Modified:	2015-12-07 17:18 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2015-12-07 17:18:50 UTC
Embargoed:

Attachments	(Terms of Use)
LDIF file to import into a directory with root suffix dc=local and ou=People,dc=local (747 bytes, text/plain) 2005-11-08 11:19 UTC, Dirk Husung	no flags	Details
Proposed fix (6.04 KB, patch) 2006-01-05 01:25 UTC, Pete Rowley	no flags	Details \| Diff
View All

Description Dirk Husung 2005-11-08 11:19:43 UTC

Created attachment 120810 [details]
LDIF file to import into a directory with root suffix dc=local and ou=People,dc=local

Comment 1 Dirk Husung 2005-11-08 11:19:43 UTC

Description of problem:
A physical ou is created (by an application) within a virtual DIT view
(presented to the application as its baseDN). Any search with the virtual DIT
view as baseDN and an additional search filter yields the physical ou even if
the ou obviously doesn't match the search filter.

Version-Release number of selected component (if applicable):
fedora-ds-7.1-2.RHEL4.i386.opt.rpm

How reproducible:
always

Steps to Reproduce:
1. create a fresh directoy with root suffix dc=local and ou=People,dc=local
2. import appended LDIF file
3. do a ldapsearch with -b "ou=calendar,ou=views,dc=local" "(uid=FUser)"
  
Actual results:
version: 1
dn: uid=FUser,ou=People, dc=local
uid: FUser
seeAlso: calendar
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetorgperson
givenName: First
sn: User
cn: First User

dn: ou=admins,ou=calendar,ou=views,dc=local
ou: admins
objectClass: top
objectClass: organizationalunit


Expected results:
Same as above, but without entry ou=admins

Additional info:

Comment 2 Pete Rowley 2006-01-04 02:54:50 UTC

This occurs only for subtree searches, the one level search returns the correct
result set.

Comment 3 Pete Rowley 2006-01-05 01:25:46 UTC

Created attachment 122801 [details]
Proposed fix

subtree view searches didn't use the client filter to limit the view subtree
portion of the match.

Comment 4 Pete Rowley 2006-01-05 21:26:58 UTC

Patch checked in

Comment 5 Orla Hegarty 2006-01-05 22:10:44 UTC

Patch needs to be verified in next round of QE per process. Reopening this bug and marking it as 
MODIFIED.

Comment 6 Michael Gregg 2007-11-19 22:19:56 UTC

 
Verified results with search:
"ou=calendar,ou=views,o=my.com" "(uid=FUser)"
ldapsearch: started Mon Nov 19 14:18:38 2007

ldap_init( legbreaker.usersys.redhat.com, 1111 )
filter pattern: (uid=FUser)
returning: ALL
filter is: (uid=FUser)
version: 1
dn: uid=FUser,ou=People, o=my.com
uid: FUser
seeAlso: calendar
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetorgperson
givenName: First
sn: User
cn: First User
1 matches

Verified aginst:
1195508960 redhat-ds-base-8.0.0-11.el5dsrv Mon Nov 19 2007 
1195508963 redhat-ds-admin-8.0.0-1.15.el5dsrv Mon Nov 19 2007 
1195508965 redhat-ds-console-8.0.0-8.el5dsrv Mon Nov 19 2007 
1195508966 redhat-admin-console-8.0.0-9.el5dsrv Mon Nov 19 2007

Note You need to log in before you can comment on or make changes to this bug.