In LDAP, different attributes are separated by a comma, so you must distinguish when you use a comma in the middle of the attribute. This means a comma in the middle of the attribute must be escaped. Sorry for the confusion. Hope this clears it up.
Jessica -----Original Message----- From: Shapira, Yoav [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 24, 2003 1:44 PM To: Tomcat Developers List Subject: RE: Working on patch (need feedback) Howdy, What about the other commas? I'm not that familiar with LDAP specs, so this may be a stupid question, but why are you escaping only the first comma? Yoav Shapira Millennium ChemInformatics >-----Original Message----- >From: Gross, Jessica [mailto:[EMAIL PROTECTED] >Sent: Tuesday, June 24, 2003 12:08 PM >To: [EMAIL PROTECTED] >Subject: Working on patch (need feedback) > >While using Tomcat and Active Directory, I found a small bug. Normally in >LDAP, you escape certain special characters, one of which being the comma. >This is done by > >DN=CN=Doe\, Jane, OU=unit, OU=People > >However, when I instructed Tomcat to search for roles by inserting the >distinguished name, no results were found. This is because I found in >Active Directory in an object filter you must put > >member=CN=Doe\\, Jane, OU=unit, OU=People or member=CN="Doe, Jane", >OU=unit, OU=People > >I have written a patch that at the moment can implement either of those two >fixes by encoding the filter. I have tried to find the answer at the LDAP >specifications at http://rfc.sunsite.dk/rfc/rfc2253.html. Is this just >Active Directory messing up? Does my fix seem reasonable? What is the >best method to fix my problems and stay within LDAP specifications? > >Any feedback or suggestions are welcomed. > >Thanks, >Jessica > >--------------------------------------------------------------------- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] This e-mail, including any attachments, is a confidential business communication, and may contain information that is confidential, proprietary and/or privileged. This e-mail is intended only for the individual(s) to whom it is addressed, and may not be saved, copied, printed, disclosed or used by anyone else. If you are not the(an) intended recipient, please immediately delete this e-mail from your computer system and notify the sender. Thank you. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
