On Mon, Mar 08, 2004 at 07:29:21PM +0100, Magosányi Árpád wrote: > 2004-03-07, v keltezéssel David B Harris ezt írta: > > On Sun, 7 Mar 2004 15:50:05 +0000 > > Magosányi Árpád <mag@bunuel.tii.matav.hu> wrote: > > > Where can I find the schema files used by the debian ldap server? > > > I coul only find a proposed schema with syntax errors with gugli. > > > > I don't know if it's kept up-to-date, but > > http://db.debian.org/userdir-ldap.schema > Thank you. > It certainly conflicts with nis.schema, but still needs attributetypes > defined there. I could handle the situation by commenting out the gecos > attributetype. Some might find that they do need UTF8 gecos: in this > case it should either be renamed to some non-conflicting names (in the > corresponding objectclasses, too), or the > gecos should be commented out in nis.schema (which behaviour seems to > conflict RFC2307, so not recommended. I think, and the LDAP admins seem to agree, that the utility of being able to interoperate with tools looking for an attribute named "gecos" outweighs any benefit of strict RFC compliance here. To that end, db.debian.org uses a slightly mangled version of nis.schema. Cheers, -- Steve Langasek postmodern programmer > Anyway, here is the patch: > M ldap/schema/userdir-ldap.schema > * modified files > > --- orig/ldap/schema/userdir-ldap.schema > +++ mod/ldap/schema/userdir-ldap.schema > @@ -280,12 +280,13 @@ > SUBSTR caseIgnoreSubstringsMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ) > > -attributetype ( 1.3.6.1.4.1.9586.100.4.2.28 > - NAME 'gecos' > - DESC 'The GECOS field; the common name' > - EQUALITY caseIgnoreMatch > - SUBSTR caseIgnoreSubstringsMatch > - SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) > +# gecos conflicts with nis.schema > +#attributetype ( 1.3.6.1.4.1.9586.100.4.2.28 > +# NAME 'gecos' > +# DESC 'The GECOS field; the common name' > +# EQUALITY caseIgnoreMatch > +# SUBSTR caseIgnoreSubstringsMatch > +# SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) > > attributetype ( 1.3.6.1.4.1.9586.100.4.2.29 > NAME 'gid' > > ################ > And here is the patch for the gecos rename approach: > M ldap/schema/userdir-ldap.schema > > * modified files > > --- orig/ldap/schema/userdir-ldap.schema > +++ mod/ldap/schema/userdir-ldap.schema > @@ -281,7 +281,7 @@ > SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ) > > attributetype ( 1.3.6.1.4.1.9586.100.4.2.28 > - NAME 'gecos' > + NAME 'Ugecos' > DESC 'The GECOS field; the common name' > EQUALITY caseIgnoreMatch > SUBSTR caseIgnoreSubstringsMatch > @@ -301,7 +301,7 @@ > DESC 'Abstraction of an account with POSIX attributes and UTF8 > support' > SUP top AUXILIARY > MUST ( cn $ uid $ uidNumber $ gidNumber ) > - MAY ( userPassword $ loginShell $ gecos $ homeDirectory $ > description ) ) > + MAY ( userPassword $ loginShell $ Ugecos $ homeDirectory $ > description ) ) > > objectclass ( 1.3.6.1.4.1.9586.100.4.1.2 > NAME 'debianGroup'
Attachment:
signature.asc
Description: Digital signature