Took code from webservice to include directly in objects class.
The point is to make sure objects::ls is not used to see attributes that
 the calling user is not allowed to see.
The same kind of check should be done for the attributes used in the
 filter.
Maybe a bypass should be added later to allow "admins" to use
 operational attributes and other LDAP attributes which does not match
 an ACL.

issue #5732