OpenLDAP
Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest

Viewing Contrib/3429
Full headers

From: raphael.ouazana@linagora.com
Subject: Contrib : automatic schema download
Compose comment
Download message
State:
0 replies:
6 followups: 1 2 3 4 5 6

Major security issue: yes  no

Notes:

Notification:


Date: Thu, 9 Dec 2004 11:22:06 GMT
From: raphael.ouazana@linagora.com
To: openldap-its@OpenLDAP.org
Subject: Contrib : automatic schema download
Full_Name: Raphael Ouazana
Version: 2.2.6
OS: Linux
URL: ftp://ftp.openldap.org/incoming/raphael-ouazana-041209-patchDownloadSchema-2.2.6-1.6.patch
Submission from: (NULL) (194.98.7.155)



As discussed in openldap-software, this is a patch to download the schema of a
remote LDAP server. It should work with at least with OpenLDAP 2.1, 2.2 and Sun
Directory 4.16 and 5.2.

I post it mainly to discuss for the moment, as it is not based on HEAD.
But if you wish to integrate it like this, feel free :)

TODO (at least) :
2.2.6 -> HEAD
Translate comments from french to english
Extended operation to reload the schema

Legal notice :
This patch file is derived from OpenLDAP Software. All of the modifications to
OpenLDAP Software represented in this following patch were developed by Raphael
Ouazana raphael.ouazana@linagora.com. These modifications are not subject to any
license of Linagora.

The attached modifications to OpenLDAP Software are subject to the following
notice:
Copyright 2004 Raphael Ouazana
Redistribution and use in source and binary forms, with or without modification,
are permitted only as authorized by the OpenLDAP Public License. 


Followup 1

Download message
Date: Thu, 9 Dec 2004 14:58:11 +0100 (CET)
Subject: Re: (ITS#3429) Contrib : automatic schema download
From: "Pierangelo Masarati" <ando@sys-net.it>
To: raphael.ouazana@linagora.com
Cc: openldap-its@OpenLDAP.org
Raphael,

I think your patch is really well contained, and can be of use to many
people.  My suggestion is to rearrange it as a dynamically loadable
module; then all one needs to do is load it __after__ all schema reading
(including loading those backends, modules and overlays that register
schema items of their own).  This would greatly simplify its use, and
eliminate any merging problem with the main branch.  You may move the
config options to a list of args preceded by their name, much like in the
replica/syncrepl statements, e.g.

moduleload downloadschema.so
        uri=ldap://remote:389
        binddn=cn=someone
        bindpw=secret
        ignore-unknown-syntaxes=yes

One point I caught by quickly surfing your code is that you install very
plain generic routines for processing unknown items.  I think a better
approach would be to use those of the "undefined" attributeType, that you
find in slap_schema.si_at_undefined; it used to refer to the
distinguishedName syntax, but recently, in HEAD, it was pointed to
octetString, which is very neutral and may serve your purpose.  I'd also
add the possibility to ignore attributeTypes with undefined syntaxes.

If you develop it as a module, I think we can host it in
contrib/slapd-modules.  I note the directory
contrib/slapd-modules/dsaschema already contains a module that reads
schema files; I don't see much difference from directly including those
files in slapd.conf, but I might be missing something.  You may follow
that as a guideline; your module would add some value by performing the
operation via LDAP.

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497



Followup 2

Download message
Date: Fri, 10 Dec 2004 17:47:05 +0100
From: =?iso-8859-1?b?UmFwaGHrbA==?= Ouazana-Sustowski <raphael.ouazana@linagora.com>
To: "ando@sys-net.it" <ando@sys-net.it>
Cc: "openldap-its@OpenLDAP.org" <openldap-its@OpenLDAP.org>
Subject: Re: (ITS#3429) Contrib : automatic schema download
Thank you for your comments. I'll try to do it as soon as I have a
little time...

Do you know if it is possible to download HEAD without CVS access ?

Raphael Ouazana.



Followup 3

Download message
Date: Fri, 10 Dec 2004 18:48:09 +0100 (CET)
Subject: Re: (ITS#3429) Contrib : automatic schema download
From: "Pierangelo Masarati" <ando@sys-net.it>
To: raphael.ouazana@linagora.com
Cc: openldap-its@OpenLDAP.org
>
> Thank you for your comments. I'll try to do it as soon as I have a
> little time...
>
> Do you know if it is possible to download HEAD without CVS access ?

Since all you need is a couple of files, you can use
http://www.openldap.org/devel/cvsweb.cgi

p.

-- 
Pierangelo Masarati
mailto:pierangelo.masarati@sys-net.it


    SysNet - via Dossi,8 27100 Pavia Tel: +390382573859 Fax: +390382476497



Followup 4

Download message
Date: Fri, 28 Jan 2005 17:46:23 +0100 (CET)
Subject: Re: (ITS#3429) Contrib : automatic schema download
From: =?iso-8859-1?Q?Rapha=EBl_Ouazana-Sustowski?= <raphael.ouazana@linagora.com>
To: ando@sys-net.it
Cc: openldap-its@openldap.org
Hi,

You can find the following files :
ftp://ftp.openldap.org/incoming/raphael-ouazana-040128-downloadschema.c
ftp://ftp.openldap.org/incoming/raphael-ouazana-040128-README

The code has been tested with OpenLDAP 2.2.23 because I can't download HEAD.
It seems to work with 2.3.0-alpha too although there are some warnings
(ldap_search_s is deprecated ?).

Raphael Ouazana.



Followup 5

Download message
Date: Fri, 14 Dec 2007 19:29:55 -0800
From: Howard Chu <hyc@symas.com>
To: openldap-its@openldap.org
Subject: ITS#3429 schema download module
I was looking at this code in relation to current HEAD/RE24, and things have 
changed quite a bit. Given the ability to dynamically load schema into 
cn=config, is there still a need for this module? (It is in fact the changes 
made for dynamic schema manipulation in slapd that causes the compatibility 
issues with this module.)
-- 
   -- Howard Chu
   Chief Architect, Symas Corp.  http://www.symas.com
   Director, Highland Sun        http://highlandsun.com/hyc/
   Chief Architect, OpenLDAP     http://www.openldap.org/project/



Followup 6

Download message
Date: Thu, 20 Dec 2007 15:13:09 +0100 (CET)
Subject: (ITS#3429) schema download module
From: =?iso-8859-1?Q?Rapha=EBl_Ouazana-Sustowski?= <raphael.ouazana@linagora.com>
To: openldap-its@openldap.org
Hi,

Le Sam 15 d.cembre 2007 04:31, hyc@symas.com a .crit :
> I was looking at this code in relation to current HEAD/RE24, and things
have
> changed quite a bit. Given the ability to dynamically load schema into
cn=config, is there still a need for this module? (It is in fact the
changes
> made for dynamic schema manipulation in slapd that causes the
> compatibility
> issues with this module.)

I don't use this module anymore.  Dynamic schema loading would be useful
to replace it by allowing replication of schema.
In fact I see only a case where the module is still useful: when I want to
get automatically the schema of some directory which is not very
respectful of LDAP standards, for example by providing attributes without
OID.

Regards,
Rapha.l Ouazana.




Up to top level
Build   Contrib   Development   Documentation   Historical   Incoming   Software Bugs   Software Enhancements   Web  

Logged in as guest


The OpenLDAP Issue Tracking System uses a hacked version of JitterBug

______________
© Copyright 2013, OpenLDAP Foundation, info@OpenLDAP.org