skip an at sign in a dn

ForgeRock / opendj-community-edition

OpenDJ is a directory server which implements a wide range of Lightweight Directory Access Protocol and related standards, including full compliance with LDAPv3 but also support for Directory Service Markup Language (DSMLv2).[1] Written in Java, OpenDJ offers multi-master replication, access control, and many extensions.

https://forgerock.github.io/opendj-community-edition/

51 stars 25 forks source link

skip an at sign in a dn #13

Closed lcami closed 4 years ago

lcami commented 4 years ago

Hi there, I am using openDJ 3.0.0-1 on CentOS7 and I would like to know if I can overcome the below error in my ldap search. I am trying to login into an application via the mail attribute. The search requested is the below:

base="login_user@domain.com" scope=sub filter="(objectClass=*)" attrs="ALL"

and the response is: The provided value "login_user@domain.com" could not be parsed as a valid distinguished name because character '@' at position 10 is not allowed in an attribute name"

Thanks

chrisridd commented 4 years ago

The value of "base" in an LDAP search must be a DN. "login_user@domain.com" is not a DN.