[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: LDIF and structural objectclasses

To: Daniel Tiefnig <dantie@gmx.at>
Subject: Re: LDIF and structural objectclasses
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Wed, 23 Apr 2003 17:27:10 -0700
Cc: openldap-software@OpenLDAP.org
In-reply-to: <3EA708CE.2020605@gmx.at>

At 02:42 PM 4/23/2003, Daniel Tiefnig wrote:
>if been reading RFC2849 for some time now, and I'm wondering about some
>things.
>
>1) Why are userpassword attributes always encoded in base64 in
>OpenLDAP2.x.x? e.g. "{crypt}c4jHzc08CN.ug" is a valid SAFE-STRING, but
>is encoded anyways.

Because rot13 is not an available LDIF form.  :-)
(See Howard's response.)

>2) I'm not sure that I'm understanding that '*', '1*' and '0*1' thingy
>correctly. AFAICT '*' means as many as wanted and '1*' means as many as
>wanted but at least one. But WTF is '0*1'?

Zero through one.

>3) FAQ-O-Matic says "Object class violation (65)" with "additional info:
>invalid structural object class chain (qmailuser/person)" means "Two or
>more structural objectClass values listed are not related."
>Why's that an error actually? (And since when, have never seen this so far.)

In short, because the information model says each object has
one and only one structure.  In long, see X.501(93).

(This has always been the case in LDAPv3.  2.0 failed to check
for this.  In 2.1, we fixed that bug.)

Kurt

Follow-Ups:
- Re: LDIF and structural objectclasses
  - From: Daniel Tiefnig <dantie@gmx.at>

References:
- LDIF and structural objectclasses
  - From: Daniel Tiefnig <dantie@gmx.at>

Prev by Date: Re: LDIF and structural objectclasses
Next by Date: Handling of this ADSVALUE type is not yet implemented
Index(es):
- Chronological
- Thread