[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: cn=config: sharing, conditionals

To: Gavin Henry <ghenry@OpenLDAP.org>
Subject: Re: cn=config: sharing, conditionals
From: Howard Chu <hyc@symas.com>
Date: Wed, 27 May 2009 04:22:54 -0700
Cc: Quanah Gibson-Mount <quanah@zimbra.com>, OpenLDAP Devel <openldap-devel@OpenLDAP.org>
In-reply-to: <15249961.221243415778647.JavaMail.root@mail>
References: <15249961.221243415778647.JavaMail.root@mail>
User-agent: Mozilla/5.0 (X11; U; Linux x86_64; rv:1.9.1b5pre) Gecko/20090517 SeaMonkey/2.0a1pre Firefox/3.0.3

Gavin Henry wrote:


----- "Quanah Gibson-Mount"<quanah@zimbra.com>  wrote:

--On Tuesday, May 26, 2009 8:35 PM -0700 Howard Chu<hyc@symas.com>
wrote:

For example, we may have a cluster of servers in MMR with a pool of

other

servers operating as slaves. We'd want the syncprov overlay active

on all

of the masters, the syncrepl consumer active on all of the servers,

and

the chain overlay active on all of the slaves. Setting

olcServerMatch on

the syncprov and chain overlays would allow things to behave as

desired,

without needing to create a parallel config tree just for the

slaves.


Comments?


I like it.  One thing we've needed to do in the past is drop the
replication configuration portions of a master (taking it to
single-server
mode).  This would allow that.  I would note it may be common (I
certainly
do so) to run the syncprov overlay on the replica as well, at least in
a
glue'd environment.

It sounds like it gracefully solves the ability of keeping both master
and
replica configurations around for the most part.  What still remains
sticky
is ACLs.  There are plenty of valid reasons for the master to have
very
different ACLs than the replicas do.

Agreed, it's still not a perfect solution for ACLs and such. Although youcould use servermatch on the database itself, and have two separateolcDatabase entries, one for the master and one for the slave. That would alsoallow you to use separate indexing on the master vs the slaves.

I agree with Quanah too. Would these be a 2.5 features?

If we can get it working right away, no, I'd release it into 2.4 ASAP since wehave an immediate need for this ability. Of course, it may not be a candidatefor 2.4.17 - we need to focus on stability there still. (Moving the syncreplconsumer into an overlay would not happen in 2.4...)


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

References:
- Re: cn=config: sharing, conditionals
  - From: Gavin Henry <ghenry@OpenLDAP.org>

Prev by Date: Re: cn=config: sharing, conditionals
Next by Date: Re: cn=config: sharing, conditionals
Index(es):
- Chronological
- Thread