This file is indexed.

/usr/share/web2ldap/htdocs/changes-0.10.html is in web2ldap 1.1.43~dfsg-1.

This file is owned by root:root, with mode 0o644.

The actual contents of the file can be viewed below.

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
<!DOCTYPE html>
<html>

  <head>

    <title>web2ldap - Changes 0.10.x</title>
    <meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
    <meta name="author" content="Michael Str&ouml;der <michael@stroeder.com>">
    <meta name="description" content="web2ldap: History of released versions">
    <meta name="keywords" content="LDAP LDAPv2 LDAPv3 subschema gateway Python python-ldap Directory userCertificate PKI LDIF DSML">
    <meta name="robots" content="INDEX,FOLLOW">
    <meta name="revisit-after" content="5 days">
    <meta name="publisher" content="stroeder.com">
    <meta name="generator" content="hand-made, home-brewed">
    <meta http-equiv="x-frame-options" content="deny">

    <!--CSS einbinden-->
    <link rel="stylesheet" type="text/css" media="screen" href="css/web2ldap.de-screen.css">
    <style type="text/css" media="all">
    @import "css/screen.css";
    </style>

    <link rel="author" href="http://www.stroeder.com">
    <link rel="license" href="http://www.stroeder.com" title="Copyright by Michael Str&ouml;der <michael@stroeder.com>">

    <script type="text/javascript">
      <!--
       if(top.frames.length > 0)
        top.location.href=self.location;
      //-->
    </script>

  </head>

  <body lang="en">


<header>

  <nav>
    <div id="navigation">
      <p>
        <a href="web2ldap.html">Main</a> //
        <a href="download.html">Download</a> /
        <a href="features.html">Features</a> /
        <a href="roadmap.html">Roadmap</a> /
        <a href="news.html">News</a> /
        <a href="demo.html">Demo</a> /
        <a href="related.html">Related</a>
      </p>
      <p>
        <a href="support.html">Support</a> //
        <a href="http://www.stroeder.com">Commercial</a> /
        <a href="feedback.html">Feedback</a> /
        <a href="faq.html">FAQ</a>
      </p>
      <p>
        <a href="docs.html">Documentation</a> //
        <a href="install.html">Installing</a> /
        <a href="usability.html">Customizing UI</a> /
        <a href="web2ldapcnf.html">Configuration</a> /
        <a href="compability.html">Compability</a> /
        <a href="security.html">Security</a> /
        <a href="changes.html">Changes</a> /
        <a href="files.html">Files</a>
      </p>
    </div>
  </nav>

  <hgroup>
    <h1>
      Changes 0.10.x
    </h1>
    <h2>
      History of released versions
    </h2>
  </hgroup>

</header>


<p>
<a href="changes-1.2.html">1.2</a>|
<a href="changes-1.1.html">1.1</a>|
<a href="changes-1.0.html">1.0</a>|
<a href="changes-0.16.html">0.16.x</a>|
<a href="changes-0.15.html">0.15.x</a>|
<a href="changes-0.14.html">0.14.x</a>|
<a href="changes-0.13.html">0.13.x</a>|
<a href="changes-0.12.html">0.12.x</a>|
<a href="changes-0.11.html">0.11.x</a>|
<a href="changes-0.10.html">0.10.x</a>|
<a href="changes-0.9.html">0.9.x</a>|
<a href="changes-0.8.html">0.8.x</a>|
<a href="changes-0.7.html">0.7.x</a>|
<a href="changes-ancient.html">Ancient</a>|
<a href="changes.html">Overview</a>
</p>


<h2 id="r0.10.15">0.10.15</h2>
<p>Release Date: 2002-07-20</p>
<dl>
  <dt>Fixes</dt>
  <dd>
    <ul>
      <li>
        Module DNS was always imported since
        <a href="changes.html#0.10.6">web2ldap 0.10.6</a>.
        This mandantory dependency has been removed.
      </li>
    </ul>
  </dd>
</dl>

<h2 id="r0.10.14">0.10.14</h2>
<p>Release Date: 2002-07-17</p>
<dl>
  <dt>Fixes</dt>
  <dd>
    <ul>
      <li>
        AttributeError exception is caught and ignored in
        case OpenLDAP client libs were built with
        configuration option --disable-cache.
      </li>
      <li>
        Fixed another new bug with NON-ASCII chars in DNs
        in ldaputil.base.match_dnlist().
      </li>
    </ul>
  </dd>
</dl>

<h2 id="r0.10.13">0.10.13</h2>
<p>Release Date: 2002-07-13</p>
<dl>
  <dt>New features</dt>
  <dd>
    <ul>
      <li>
        Now all commands in PATH_INFO can be used with LDAP URLs.
        If it is not possible to do something useful hopefully
        an reasonable error message is displayed.
        This makes it possible to directly point to an entry to be modified
        or construct a URL to immediately jump to the password form for a
        specific entry.
      </li>
      <li>
        A descriptive list of all group entries is displayed in [groupadm]
        with [Read] link to each group.
      </li>
    </ul>
  </dd>
  <dt>Fixes</dt>
  <dd>
    <ul>
      <li>
        Reconnecting was broken when catching <var>ldap.SERVER_DOWN</var>.
        A configuration option could not be read because of missing class
        attribute <var>LDAPSession.host</var>.
      </li>
      <li>
        Distinguished names are treated completely as opaque to avoid
        problems with using OpenLDAP 2.1 client libs for python-ldap
        but older OpenLDAP server versions.
        Now let's see how that works...
      </li>
    </ul>
  </dd>
</dl>

<h2 id="r0.10.12">0.10.12</h2>
<p>Release Date: 2002-07-08</p>
<ul>
  <li>
    Fixed bug with missing parameter for <var>w2lapp.login.w2l_Login()</var>
    in <var>w2lapp.passwd</var>.
  </li>
</ul>

<h2 id="r0.10.11">0.10.11</h2>
<p>Release Date: 2002-07-04</p>
<ul>
  <li>
    Several small changes leading to more tolerant checking for
    empty search results. This was necessary because of some small
    upcoming changes in python-ldap.
  </li>
  <li>
    When searching for a bind DN (smart login) search continuations
    are ignored.
  </li>
  <li>
    The default for the search root when displaying the search form
    is set to dynamically instead of using just <var>ls.dn</var>.
    A new method <var>ldapsession.LDAPSession.getSearchRoot()</var> was
    added for that purpose.
  </li>
  <li>
    Abandoned class attribute <var>ls.searchRoot</var> since it could
    cause confusion if the user browses with two different browser
    windows in different naming contexts but with same
    <var>LDAPSession</var> instance.
  </li>
  <li>
    Form parameter <var>login_search_root</var> is heeded when
    login exceptions are caught. The default of the select list
    is set accordingly.
  </li>
</ul>

<h2 id="r0.10.10">0.10.10</h2>
<p>Release Date: 2002-06-28</p>
<ul>
  <li>
    Fixed type bug introduced with bug fix this afternoon...
  </li>
</ul>

<h2 id="r0.10.9">0.10.9</h2>
<p>Release Date: 2002-06-28</p>
<ul>
  <li>
    With OpenLDAP 2.x the wildcard for getting all attributes
    was not correct. Attributes were not displayed
    since feature 1.3.6.1.4.1.4203.1.5.1
    (see <a href="http://tools.ietf.org/draft/draft-zeilenga-ldap-opattrs/">draft-zeilenga-ldap-opattrs</a>) was not properly
    handled.
  </li>
</ul>

<h2 id="r0.10.8">0.10.8</h2>
<p>Release Date: 2002-06-24</p>
<dl>
  <dt>Bug fixes</dt>
  <dd>
    <ul>
      <li>
        Not really a bug fix: Display the RDN in the group select
        list if the attribute <var>cn</var> was not found in the entry.
      </li>
      <li>
        Removed debug print statements in <var>pylib/w2lapp/read.py</var>.
      </li>
    </ul>
  </dd>
</dl>

<h2 id="r0.10.7">0.10.7</h2>
<p>Release Date: 2002-06-22</p>
<dl>
  <dt>New features</dt>
  <dd>
    <ul>
      <li>
        Introduced new host-/backend-specific parameter
        <a href="web2ldapcnf_hosts.html#requested_attrs">requested_attrs</a>
        which defines a list of attributes explicitly requested
        when doing a search, read or modify operations.
      </li>
    </ul>
  </dd>
  <dt>Changes in UI</dt>
  <dd>
    <ul>
      <li>
        [Read] in main menu enforces the entry to be flushed
        from cache and read freshly. A new form input parameter
        <var>read_nocache</var> was introduced for that.
      </li>
    </ul>
  </dd>
  <dt>Bug fixes</dt>
  <dd>
    <ul>
      <li>
        The DN Unicode object was not properly encoded when
        calling <var>DelTree()</var> in <var>w2lapp.delete</var>
        which caused an exception when doing a recursive delete
        with a base DN containing NON-ASCII chars.
      </li>
    </ul>
  </dd>
</dl>

<h2 id="r0.10.6">0.10.6</h2>
<p>Release Date: 2002-05-28</p>
<dl>
  <dt>Changes in UI</dt>
  <dd>
    <ul>
      <li>
        [groupadm] has new form parameter <var>group_search_root</var>.
        A select list with the possible search root DNs for the
        group search is shown.
      </li>
    </ul>
  </dd>
  <dt>Bug fixes</dt>
  <dd>
    <ul>
      <li>
        Module DNS is import in <var>w2lapp.locate</var>
        to catch <var>DNS.Error</var> exception.
      </li>
      <li>
        Properly display DNSError exception string.
      </li>
      <li>
        Display attribute description for <var>supportedFeatures</var>
        also with the help of the OID registry.
      </li>
      <li>
        The [Group] feature did not show any groups at all
        under some circumstances. Also the implementation is faster now.
      </li>
      <li>
        On X.500 servers (e.g. Critical Path InJoin) a
        one-level root search really returns the first level
        which might be also in the <var>namingContexts</var> attribute of RootDSE.
        Now the appended pseudo search results based on <var>namingContexts</var>
        are filtered to avoid displaying a DN twice.
      </li>
      <li>
        Checking if attribute values are used in characteristic
        attributes is now done case-insensitive (and hopefully faster).
      </li>
      <li>
       Displaying <var>DNS.Error</var> exception messages in
       <var>locate</var> fixed.
      </li>
    </ul>
  </dd>
</dl>

<h2 id="r0.10.5">0.10.5</h2>
<p>Release Date: 2002-04-02</p>
<ul>
  <li>
    Removed unnecessary 2nd submit button in login
    form when changing to a server found via DNS SRV RR.
  </li>
  <li>
    HTML examples for using side-bars of modern browsers as
    entry point. (Make sure to use LDAP URLs!)
  </li>
  <li>
    Fixed wrong case-sensitive behaviour of print output.
  </li>
  <li>
    Added HTTP header <code>Cache-Control: no-cache</code>.
  </li>
  <li>
    DNS and socket module exceptions are caught in
    <var>w2lapp.locate</var> and displayed as error messages
    to the user.
  </li>
</ul>

<h2 id="r0.10.4">0.10.4</h2>
<p>Release Date: 2002-03-01</p>
<ul>
  <li>
    Separate field instances are created for displaying input fields
    <var>search_scope</var> and <var>search_resnumber</var> in module
    <var>w2lapp.searchform</var>.
    This fixes running into a <var>KeyError</var> exception in case someone
    e.g. enters a malformed search filter in a LDAP URL
    and <var>w2lapp.searchform.w2l_SearchForm()</var> is called.
  </li>
  <li>
    Correct handling of malformed DNs by normalizing the form
    parameter <var>dn</var> after form processing.
  </li>
  <li>
    If the RDN of a new entry added is automatically derived from
    entry data characters special for DNs are correctly escaped.
  </li>
  <li>
    Display attribute values as complete Python string representation
    with properly escaped HTML special chars when displaying modify
    list after adding or modifying an entry.
  </li>
  <li>
    Several fixes for special chars used in DNs.
  </li>
  <li>
    Fixed displaying no such object exception message if
    DN contains non-ASCII characters.
  </li>
</ul>

<h2 id="r0.10.3">0.10.3</h2>
<p>Release Date: 2002-02-17</p>
<ul>
  <li>
    Fixed race-condition in <var>w2lapp.handler</var> during
    handling expired sessions.
  </li>
  <li>
    Input field length for attribute values in
    <var>w2lapp.addmodifyform</var> is now 60 chars.
  </li>
  <li>
    Some more performance enhancements with determining
    the appropriate attribute syntax for displaying an attribute value
    in <var>w2lapp.gui.DataStr()</var>.
  </li>
  <li>
    No generic error handler for <var>IOError</var> exceptions
    in <var>w2lapp.handler.HandleHTTPRequest()</var> anymore.
  </li>
  <li>
    Reordered menu items in <var>w2lapp.gui.ContextMenuSingleEntry()</var>
    to hopefully improve usability.
  </li>
</ul>

<h2 id="r0.10.2">0.10.2</h2>
<p>Release Date: 2002-02-06</p>
<ul>
  <li>
    Display quick-choose list for defining objectclasses with
    <var>w2lapp.gui.W2L_Anchor()</var> instead of
    <var>w2lapp.gui.W2L_Form()</var>. This is faster and looks more compact.
  </li>
  <li>
    Fix if list of hostport parameters is passed to
    <var>ldapsession.LDAPSession.open()</var>.
  </li>
</ul>

<h2 id="r0.10.1">0.10.1</h2>
<p>Release Date: 2002-02-04</p>
<ul>
  <li>
    Fixes a bug according to host:port handling introduced
    in 0.10.0 just before releasing it.
  </li>
  <li>
    Result type in w2lapp.search is checked by dictionary
    key instead of string comparison. This should lead to
    increased performance when processing large search results.
  </li>
</ul>

<h2 id="r0.10.0">0.10.0</h2>
<p>Release Date: 2002-02-01</p>
<dl>
  <dt>Important notices</dt>
  <dd>
    <ul>
      <li>
        A new
        <a href="http://python-ldap.sf.net">python-ldap</a>
        is required which MUST be build with the
        the OpenLDAP 2 libs.<br>
        (Note: The OpenLDAP 2 libs are currently not available for Windows!)
      </li>
      <li>
        The config file format for the host-/backend-specific parameters
        has been changed! A base Python class <var>Web2LDAPConfig</var>
        was defined. All configuration host-/backend-configurations
        are instances of this class. This hopefully simplifies
        the syntax.
      </li>
      <li>
        <a href="http://www.stroeder.com/pylib/PyWebLib/">PyWebLib 1.1.0+</a>
        required!
      </li>
    </ul>
  </dd>
  <dt>Features</dt>
  <dd>
    <ul>
      <li>
        Preliminary support for StartTLS extension
        (see <a href="http://tools.ietf.org/html/rfc2830">RFC 2830</a>).
        New host-/backend-specific parameter
        <a href="web2ldapcnf_hosts.html#starttls">starttls</a>
        defined.
      </li>
      <li>
        Process LDAP URL extensions <var>bindname</var> and <var>X-BINDPW</var>
        when executing command <var>ldapurl</var>. Use with care! Especially
        it is not recommended to add passwords to URLs!
      </li>
      <li>
        URLs in LDIF input are evaluated now (see
        <a href="http://tools.ietf.org/html/rfc2849">RFC 2849</a>).
        One can directly include an binary data blob loadable via FTP or
        HTTP into an attribute of a LDAP entry (e.g. handy
        for adding jpegPhoto attributes).
        Global configuration parameter
        <a href="web2ldapcnf_misc.html#ldif_url_schemes">web2ldapcnf.misc.ldif_url_schemes</a>
        specifies which URL schemes are processed.<br>
        <strong>Think twice when setting this since it is a security nightmare in most cases!!!</strong>
      </li>
      <li>
        Command button [Modify RDN] was renamed to command [Rename].
        The new superior DN can be set if LDAPv3 is in use.
      </li>
      <li>
        Added signal handler for SIGHUP which reloads configuration
        module <var>web2ldapcnf</var>.
      </li>
      <li>
        Write PID of main thread to file. See new parameters
        <a href="web2ldapcnf_standalone.html#pid_file">web2ldapcnf.standalone.pid_file</a>
        and
        <a href="web2ldapcnf_fastcgi.html#pid_file">web2ldapcnf.fastcgi.pid_file</a>.
      </li>
      <li>
        Enabling/disabling manage DSA IT mode in [ConnInfo]
        (see <a href="http://tools.ietf.org/draft/draft-zeilenga-ldap-namedref/">draft-zeilenga-ldap-namedref</a>).
      </li>
    </ul>
  </dd>
  <dt>User Interface</dt>
  <dd>
    <ul>
      <li>
        Also display OIDs in <var>supportedFeatures</var> of RootDSE
        with description and reference to literature.
      </li>
      <li>
        Default number of search results per page can be
        set in configuration module web2ldapcnf.hosts with
        new parameter
        <a href="web2ldapcnf_hosts.html#search_resultsperpage">search_resultsperpage</a>.
      </li>
      <li>
        Login form presents select list for specifying the search root
        for search requests done with smart login (new form parameter
        <var>login_search_root</var>). This enables smart login to search
        for user entries outside the scope of the current backend.
      </li>
      <li>
        Added a generic handler for exception <var>ldap.NO_SUCH_OBJECT</var>
        which does a DNS SRV lookup for dc-style DNs. A login form
        for confirming the reconnect is presented to the user.
      </li>
      <li>
        Output mode can be chosen in [Read] button of main menu.
        &quot;Raw table&quot; does not use HTML templates at all.
      </li>
      <li>
        Hopefully improved HTML output to be more compliant to
        HTML 4.01 transitional =&gt;.
      </li>
      <li>
        Delete operation has three selectable modes of operation now:
        <ul>
          <li>
            Only this entry
          </li>
          <li>
            All entries below this entry (recursive)
          </li>
          <li>
            All entries including this entry (recursive)
          </li>
        </ul>
      </li>
      <li>
        Added support for deleting single binary attributes.
        For binary attributes a [Delete] button is shown in the
        raw display table of [Read]. All values are deleted at once.
        There is no option to delete only certain attribute values of
        multi-values attributes.
      </li>
      <li>
        Command buttons are not generated by using &lt;form&gt; tags
        anymore. Instead most command buttons are simple
        links. This saves around 40% of HTML text in the search
        result table and is rendered much faster in common web
        browser. It is also more friendly to be styled by CSS definitions
        and saves space in the menu bars.
      </li>
      <li>
        Search results are displayed as descriptive list &lt;dl&gt;
        instead as &lt;table&gt;.
      </li>
      <li>
        In the search result list the attributes <var>hasSubordinates</var>
        (see X.501) and <var>subordinateCount</var>
        (implemented in Novell eDirectory)
        are used if available to determine if it does make sense to
        display a [Down] link.
      </li>
      <li>
        The distinguished name (form parameter <var>dn</var>) is passed in
        every link. The result is a more robust behaviour when the
        user presses the browser's back button or opens links in
        new windows.
      </li>
      <li>
        Removed [Password] link from main menu. User can change
        the password of the entry of current bind DN in [ConnInfo].
      </li>
      <li>
        [ConnInfo] displays LDAP server vendor information
        as described in
        <a href="http://tools.ietf.org/html/rfc3045">RFC 3045</a>.
      </li>
      <li>
        Attribute values used in characteristic attributes of RDN are
        set to read-only in the entry input form since modifying these
        attributes results in either an error or undefined behaviour
        on broken servers. They are resubmitted though to prevent
        the differential update deleting them.
      </li>
    </ul>
  </dd>
  <dt>Code cleaning and performance enhancements</dt>
  <dd>
    <ul>
      <li>
        Use os.path.join(..) instead of os.sep.join([..]).
      </li>
      <li>
        Simplified getting the operational attributes by checking the
        presence of OID 1.3.6.1.4.1.4203.1.5.1 in list of attribute values
        of attribute <var>supportedFeatures</var> of the server's root DSE.
      </li>
      <li>
        Rewrote building the group search filters of the [groupadm] feature.
      </li>
      <li>
        Displaying attribute types with known syntax is much faster now.
      </li>
      <li>
        LDAPError exceptions are now converted to human-readable
        HTML form by a single function.
      </li>
      <li>
        Module <var>ldaputil.ldapurl</var> is no longer shipped with
        web2ldap since it was contributed to <em>python-ldap</em>.
        and renamed to <var>ldap.ldapurl</var>.
      </li>
      <li>
        Module <var>ldaputil.modlist</var> is no longer shipped with
        web2ldap since it was contributed to <em>python-ldap</em>
        and renamed to <var>ldap.modlist</var>.
      </li>
      <li>
        Big clean-up in <var>w2lapp.handler</var> regarding redundant
        code for LDAP connects and binds (either coming the way via LDAP URL
        or form input).
      </li>
      <li>
        The handling of LDAP URLs and form parameters was harmonized.
        The extra command <var>ldapurl</var> is still accepted for
        backwards compability but is not necessary anymore.
        If the query string of the URL is a LDAP URL it is automagically
        processed that way and the parameters are derived from the LDAP URL.
      </li>
      <li>
        HTTP Accept-headers are now all processed by basically the same
        same class <var>pyweblib.helper.AcceptHeaderDict</var>.
      </li>
      <li>
        Hopefully simplified handling of search form parameters.
      </li>
      <li>
        Recursive deletes should be much faster since unnecessary
        search operations are avoided if possible. It also does not consume
        much memory anymore since there are no list manipulations necessary
        anymore. Recursive deletes also honors the attributes
        <var>hasSubordinates</var> and <var>subordinateCount</var> if available.
        The new parameter delete_scope is handled exactly like search scope.
      </li>
      <li>
        Cleaned up module <var>w2lapp.search</var> by writing a
        base class for doing e.g. stream processing and
        pseudo-paging of LDAP entries with async searches. This module
        <var>ldap.async</var> is part of python-ldap.
      </li>
      <li>
        Form input parameter <var>in_ldif</var> is now handled by
        new class <var>w2lapp.gui.LDIFTextArea</var>.
      </li>
      <li>
        New functions <var>w2lapp.gui.TopSection()</var> and
        <var>w2lapp.gui.SimpleMessage()</var> used for most output
        of the status bar, main and context menus.
      </li>
      <li>
        Cleaned up parameter mess of <var>w2lapp.gui.CommandButton()</var>.
      </li>
      <li>
        Consequently import symbols from <var>web2ldapcnf.misc</var>
        through common mechanism.
      </li>
      <li>
        The distinguished name is consequently passed around
        to overcome inconsistencies if the user works with
        more than one browser window but with one session ID.
      </li>
      <li>
        Negation filter (!()) is not used in [GroupAdm] anymore
        since negation assertions are usually very slow on most
        LDAP servers.
      </li>
    </ul>
  </dd>
  <dt>Bug fixes and work arounds</dt>
  <dd>
    <ul>
      <li>
        Explicitly request special attribute types of sub schema sub entry
        (necessary since e.g. OpenLDAP 2 does not return the attributes
        by default).
      </li>
      <li>
        If a bind was not successful at all [ConnInfo] does not fail anymore.
        Instead a note about no proper binding occurs.
      </li>
      <li>
        Exception handler for displaying known but malformed certificate
        extensions with a generic parsing output.
      </li>
      <li>
        Send Pragma: no-cache in HTTP header and the equivalent
        in section &lt;head&gt; of HTML page to avoid browsers
        reusing old HTML pages with old session IDs.
      </li>
      <li>
        Reimplemented caching in <var>ldapsession.LDAPSession</var> to fix
        a nasty bug with entries being not properly uncached by calling
        method <var>LDAPSession.uncacheEntry()</var>.
        The hierarchical cache structure with DN as first and attribute
        list as second level makes uncaching of an entry much easier.
      </li>
      <li>
        DSML output correctly substitutes occurences of &amp; and &lt;
        with the character entities.
      </li>
    </ul>
  </dd>
</dl>

  <footer>
    <div id="footer">
      sponsored by <a href="http://www.stroeder.com">
      stroeder.com - Information Technology, IT-Security, Identity Management,
      System Integration</a>
    </div>
  </footer>

</body>

</html>