[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#7493) slapo-allowed: allowed* attrs are replicated

masarati@aero.polimi.it wrote:
>> Michael Ströder wrote:
>>> hyc@symas.com wrote:
>>>> masarati@aero.polimi.it wrote:
>>>>> On 01/15/2013 07:40 PM, michael@stroeder.com wrote:
>>>>>> Please consider the attached patch which sets allowed
>>>>>> "USAGE dSAOperation". This seems to be the most appropriate USAGE
>>>>>> compara=
>>>>>> ble
>>>>>> to what's set for entryTTL in slapo-dds.
>>>>> No objection with this patch, since those properties were
>>>>> "arbitrarily"
>>>>> assigned to attributes defined by others to provide software
>>>>> interoperability.  Unless anyone has objections, I'd commit it.
>>>> Go ahead. Please add a comment about the origin of the schema
>>>> definitions and
>>>> these interoperability concerns.
>>> These attribute type descriptions were roughly taken from MS AD.
>> I meant, please add a comment *in the patch* so it will remain in the
>> source code.
> There's already a detailed comment to this end in the related README,
> which links the attribute definitions on <http://msdn.microsoft.com/>.

As already noted, those links don't provide actual schema definitions, nor do 
they define the USAGE. We're making a judgement call here with no 
documentation to support it. We should document why we're defining it this way 
so we don't have to repeat this conversation again down the road.
> p.
>>> Today I've checked the subschema of a W2K8R2 AD server:
>>> I did not find a single attribute type description with USAGE although
>>> there
>>> were attribute types formally defined in RFCs. One example is 'entryTTL'
>>> defined with "USAGE dSAOperation" in RFC 2589 which in fact was
>>> co-authored by
>>> Microsoft employees.
>>> The official Microsoft documentation is here [MS-ADA1]:
>>> http://msdn.microsoft.com/en-us/library/cc219752.aspx
>>> Ciao, Michael.