From dcc3abdc9b904efef5b273615e34685ae2e8e207 Mon Sep 17 00:00:00 2001
From: Ludovic Poitou <ludovic.poitou@forgerock.com>
Date: Wed, 30 May 2012 21:43:08 +0000
Subject: [PATCH] Fix OPENDJ-450: Attribute options in ACI are not properly handled. Added a control to reject aci containing attributes with options.

---
 opends/src/messages/messages/access_control.properties |    5 +++--
 1 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/opends/src/messages/messages/access_control.properties b/opends/src/messages/messages/access_control.properties
index a7483d4..7ff8cfe 100644
--- a/opends/src/messages/messages/access_control.properties
+++ b/opends/src/messages/messages/access_control.properties
@@ -21,6 +21,7 @@
 # CDDL HEADER END
 #
 #      Copyright 2006-2008 Sun Microsystems, Inc.
+#      Portions Copyright 2012 ForgeRock AS
 
 
 
@@ -191,8 +192,8 @@
 SEVERE_WARN_ACI_SYNTAX_INVALID_TARGETATTRKEYWORD_EXPRESSION_42=The provided \
  Access Control Instruction (ACI) targetattr expression value "%s" is invalid. \
  A valid targetattr keyword expression value requires one or more valid \
- attribute type names in the following format: attribute1 [|| attribute1] ... \
- [|| attributeN]
+ attribute type names in the following format: attribute1 [|| attribute2] ... \
+ [|| attributeN]. Attribute options are not supported
 SEVERE_WARN_ACI_SYNTAX_INVALID_TARGETFILTERKEYWORD_EXPRESSION_43=The provided \
  Access Control Instruction (ACI) targetfilter expression value "%s" is \
  invalid because it is not a valid LDAP filter

--
Gitblit v1.10.0