You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Feb 25, 2019. It is now read-only.
normalizeDn in LDAP.js does not consider all possible issues in LDAP DNs for string comparison.
Issue 1: multi-valued RDNs are not order sensitive, so cn=foo+uid=bar,c=us and uid=bar+cn=foo,c=us are equal...
Issue 2: There are multiple legal ways to escape special characters on a DN, so cn=Smith\,John,c=us and cn=Smith\2CJohn,c=us are also equal...
I recommend using an existing DN class for all DN comparisons...you can typically use these same libraries to normalize the DN before saving it to your DB. I have not verified this API is propely implemented but giving them the benefit of the doubt, it may help: ldapjs DN API
normalizeDn in LDAP.js does not consider all possible issues in LDAP DNs for string comparison.
Issue 1: multi-valued RDNs are not order sensitive, so
cn=foo+uid=bar,c=usanduid=bar+cn=foo,c=usare equal...Issue 2: There are multiple legal ways to escape special characters on a DN, so
cn=Smith\,John,c=usandcn=Smith\2CJohn,c=usare also equal...I recommend using an existing DN class for all DN comparisons...you can typically use these same libraries to normalize the DN before saving it to your DB. I have not verified this API is propely implemented but giving them the benefit of the doubt, it may help: ldapjs DN API