[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: OpenLDAP UTF8 values support

To: openldap-technical@openldap.org
Subject: Re: OpenLDAP UTF8 values support
From: André Rodier <andre@rodier.me>
Date: Sat, 24 Mar 2018 00:07:19 +0000
Authentication-results: smtpfr.rodier.me; dmarc=fail (p=reject dis=none) header.from=rodier.me
Content-language: en-GB
Dkim-filter: OpenDKIM Filter v2.9.2 smtpfr.rodier.me 44E0E245E5
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rodier.me; s=smtpuk; t=1521850040; bh=oh/FfkqOIBtXBaaNtnRLo+CgJCaneds0FbiJ+vc+cIg=; h=Subject:To:References:From:Date:In-Reply-To:From; b=d6W4z2Pe7CzBOQPlxoAFaHt+0H6aIBbUa8V0VxPSbi/oGQ6ExALCMA4K95Yod02cv n7X8rlBEFCQ1WbA0X5JB2dTe5CBroGI4WcD5PQGbq4qQKMVoMuu65uQgDUTHK8Wxe2 R8Z0VE48k06Di2aHytVP/YcmWn02GXs3kqBtAWYs=
In-reply-to: <424b67167c4b85d478b2bd027502e262@stroeder.com>
References: <bca770bcc9a54f2028ba6ff6bce515e0@imap.rodier.me> <424b67167c4b85d478b2bd027502e262@stroeder.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0

On 21/03/18 17:19, Michael Ströder wrote:
> On 2018-03-21 16:42, Andre Rodier wrote:
>> I want to use international characters for the "secondary" email
>> addresses but and OpenLDAP is complaining about it, as invalid syntax.
> 
> That's because attribute 'mail' is defined to be IA5String syntax
> which is more or less ASCII.
> 
>> Is there any limitation in OpenLDAP that would prevent some fields to
>> be stored in UTF8 directly?
> 
> No. But the attribute type has to be declared to use DirectoryString
> syntax.
> 
> That's why I proposed 'intlMailAddr' herein:
> https://tools.ietf.org/html/draft-stroeder-mailboxrelatedobject-07#section-2
> 
> 
> Note that this attribute only makes sense in case of non-ASCII local part
> and for use with SMTPUTF8 extensions. I currently only know of one SMTPUTF8
> implementation (postfix 3.x).
> 
> If the mail address' domain part is non-ASCII you should store it as
> IDNA encoding
> (e.g. my web2ldap supports auto-converting the user's input.)
> 
>> I have noticed that the givenName and
>> surname are automatically encoded in base64 when containing accents,
>> so is it a standard practice?
> 
> The attribute values are *not* base64-encoded via LDAP.
> What you're seeing as output of ldapsearch is LDIF representation
> which has to be ASCII-clean (see RFC 2849).
> 
> Ciao, Michael.
> 

Hello Michael,

Thank you for your schema, it is working perfectly.

I am attaching the final LDIF file to the email, so anyone can use it
for their projects.

Tell me if I made a mistake, but so far it works perfectly. I have both
Dovecot and Postfix querying internationalised email addresses, and I
will have something stable enough soon.

Kind regards,
André

-- 
https://github.com/progmaticltd/homebox

# The attribute type 'intlMailAddr' is defined for storing SMTPUTF8
# compliant addresses [RFC6530]
# https://tools.ietf.org/html/draft-stroeder-mailboxrelatedobject-07

dn: cn=intlMailAddr,cn=schema,cn=config
objectClass: olcSchemaConfig
cn: intlMailAddr
olcAttributeTypes: ( 1.3.6.1.4.1.5427.1.389.4.18
  NAME 'intlMailAddr'
  DESC 'Internationalized Email Address'
  EQUALITY caseIgnoreMatch
  SUBSTR caseIgnoreSubstringsMatch
  SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
olcObjectClasses: ( 1.3.6.1.4.1.5427.1.389.6.9
  NAME 'mailboxRelatedObject'
  DESC 'Associated RFC 5321 mailbox for any entry'
  AUXILIARY
  MAY ( displayName $ mail $ intlMailAddr ) )

References:
- OpenLDAP UTF8 values support
  - From: Andre Rodier <andre@rodier.me>
- Re: OpenLDAP UTF8 values support
  - From: Michael Ströder <michael@stroeder.com>

Prev by Date: Re: LMDB on Ramdisk (tmpfs)
Next by Date: Re: OpenLDAP UTF8 values support
Index(es):
- Chronological
- Thread