[turba] Problem with Turba and LDAP addressbook

[Adam Tauno Williams]

> On Fri, 2005-11-04 at 18:31 -0500, Kevin M. Myer wrote:
> > You can't add a cn=Jarko object unless you already have a 
> > uid=20051103152713.5ost2ejj20w0 at groupware.our.domain object below it, 
> > unless you intend for that to be a composite RDN.
> Indeed. I would assume that Turba should create the necessary
> substructures since the values are clearly dynamically created. 

NO!   It is *EXTREMELY* unlikely in any sanely configured LDAP server
that the user, or the DN known to Turba, would have sufficient rights to
create containers.  An address book applications should merely be able
to modify, create, and delete objects within a specific container.

> It would be quite awkward to require that these structures were created
> separately by directly manipulating the LDAP-tree.

It should be part of the new user procedure to create the user's private
containers;  only an administrator should be able to create containers
in the Dit.  Otherwise I can tell you all kinds of devious ways that a
user can introduce data into the Dit in order to try and trick-up the
system,  or at least result in unintended consequences.

> > Is your RDN supposed to be of the form 
> > "cn=something,uid=somethingelse", or is it to be of the form 
> > "cn=something"?
> Good question, this is the default which Turba has. Apparently there is
> a huge gap between the documentation and the code. Or is it that nobody
> uses the personal LDAP addressbook?

We use it extensively; it works perfectly.  You need to understand
concepts like container, DN, RDN, and multi-valued RDN and then
configure your Turba source appropriately.  Some background in the LDAP
data-model is absolutely required.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.horde.org/archives/turba/attachments/20051110/78e96299/attachment-0001.bin