remove experimental code as per ITS#4962 discussion

2026-01-06 15:10:22 -05:00 · 2007-09-07 12:33:21 +00:00 · 2007-09-07 12:33:21 +00:00 · 2da15f1013
commit 2da15f1013
parent c8c6cba5fc
1 changed files with 5 additions and 14 deletions
--- a/servers/slapd/back-bdb/bind.c
+++ b/servers/slapd/back-bdb/bind.c
@ -39,19 +39,6 @@ bdb_bind( Operation *op, SlapReply *rs )
 		"==> " LDAP_XSTRING(bdb_bind) ": dn: %s\n",
 		op->o_req_dn.bv_val, 0, 0);

-#ifdef LDAP_DEVEL
-	/* allow noauth binds */
-	switch ( be_rootdn_bind( op, rs ) ) {
-	case SLAP_CB_CONTINUE:
-		break;
-
-	default:
-		/* in case of success, frontend will send result;
-		 * otherwise, be_rootdn_bind() did */
-		return rs->sr_err;
-	}
-
-#else /* traditional */
 	/* allow noauth binds */
 	switch ( be_rootdn_bind( op, NULL ) ) {
 	case LDAP_SUCCESS:
@ -60,9 +47,13 @@ bdb_bind( Operation *op, SlapReply *rs )

 	default:
 		/* give the database a chanche */
+		/* NOTE: this behavior departs from that of other backends,
+		 * since the others, in case of password checking failure
+		 * do not give the database a chance.  If an entry with
+		 * rootdn's name does not exist in the database the result
+		 * will be the same.  See ITS#4962 for discussion. */
 		break;
 	}
-#endif /* traditional */

 	rs->sr_err = LOCK_ID(bdb->bi_dbenv, &locker);
 	switch(rs->sr_err) {