Re: memberOf attribute

[Pierangelo Masarati <masarati@aero.polimi.it>]

Michael Ströder wrote:
> 
> Pierangelo Masarati wrote:
> >
> > > Jeff Costlow wrote:
> > >
> > > I think I've seen the "memberOf "attribute in both ADS and iPlanet.
> > > It appears to be the converse of "member", and I believe it gets
> > > updated when you add a member to a group.
> > >
> > > Are there plans to add this sort of functionality into OpenLDAP?
> >
> > I don't think so. It seems that the philosophy of LDAP (and of OpenLDAP)
> > is not to muck with data, that is the server will hold any information
> > you send in, but it will not change it nor check its consistency
> > besides syntax and schema.  What you're talking about should better
> > be done by a wise client.
> 
> I would also not recommend to implement this at the client-side.
> Changing group membership would require modifying two entries which
> would have to be encapsulated in a transaction at the client's side.
> Not to speak of concurrent access of misbehaving clients rewriting
> old attributes and such.

I meant an ideally wise client :)

Pierangelo.

-- 
Dr. Pierangelo Masarati               | voice: +39 02 2399 8309
Dip. Ing. Aerospaziale                | fax:   +39 02 2399 8334
Politecnico di Milano                 | mailto:masarati@aero.polimi.it
via La Masa 34, 20156 Milano, Italy   |
http://www.aero.polimi.it/~masarati