[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDAP query

To: raju@watson.ibm.com, ietf-ldapext@netscape.com
Subject: Re: LDAP query
From: Erik Skovgaard <eskovgaard@geotrain.com>
Date: Thu, 12 Nov 1998 15:37:13 -0800
Cc: ietf-ldapext@netscape.com
In-reply-to: <364ADE37.93354BF1@watson.ibm.com>
References: <9740.910892013@threadgill.austin.innosoft.com>
Resent-date: Thu, 12 Nov 1998 15:37:54 -0800 (PST)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"mBL1t1.0.Fj6.65tIs"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Raju,

At 13:10 98/11/12 +0000, Raju Rajan wrote:
>
>Hi,
>
> I have a quick LDAP related question.
>
> In the Policy WG we have a schema where certain objects are referenced
from other
>objects. The question relates to the deleting of objects, without leaving
dangling
>references in the directory. The solutions we are considering are (a) have a
>ReferenceCount attribute or (b) have a ReferringDNList attribute, to keep
track of the

They should probably be operational attributes and not user attributes.

>pointers to each object. Is there any way of getting around the concurrent
write problem?
>That is, is there a way to "test and delete" as an atomic operation? Thanks,

No, you would pretty much have to step through each entry and take the
appropriate action.  In case of aliases, you would delete them or change
the the name they point to.  But it actually gets more complicated.  For
instance, you have a "see also" attribute in some entries.  That would have
to be changed (or the value deleted).  An entry may also be part of a group
and you'd have to delete the appropriate value in the group entry.

To make a long story short, you may have several entries that somehow refer
to the entry you want to delete.  As it stands, products currently do not
provide tools for cleaning these up although I have seen one that tried to
clean up aliases.

The best current approach is to develop administrative policies and
procedures that ensure that all these entries a kept up to date.  A good
administrator can be taught to search through the Directory for entries
which refers to a deleted entry.  Automated procedures could be written to
take care of the job, but they would be specific to a Directory
Administration.

Cheers,                       ....Erik.

--------------------------------------
Erik Skovgaard
GeoTrain Corp.
Enterprise Directory Engineering Services
http://www.geotrain.com/Pserve/psdirect.htm

>
>Regards,
>
>Raju Rajan
>
>
>

References:
- Re: ldap_remove() in ldapext-ldap-c-api-01
  - From: Mark Wahl <M.Wahl@INNOSOFT.COM>
- LDAP query
  - From: Raju Rajan <raju@watson.ibm.com>

Prev by Date: ldap_rename() (Was: ldap_remove()) in ldapext-ldap-c-api-01
Next by Date: application defined charset translations
Index(es):
- Chronological
- Thread