X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=userdir-ldap.schema;h=37dc7c5d53f79fb571b242287759d99b026f24d7;hb=2420263569c3f95df9e0e4bf06937dafebc7920e;hp=35df6daacf0486e05efa6522c06cca2d57ce5b1d;hpb=a3437bcd185d533199ebd7c3e0f69b816cc904af;p=mirror%2Fuserdir-ldap.git diff --git a/userdir-ldap.schema b/userdir-ldap.schema index 35df6da..37dc7c5 100644 --- a/userdir-ldap.schema +++ b/userdir-ldap.schema @@ -104,6 +104,8 @@ # .36 - sudoPassword # .37 - subGroup # .38 - mailContentInspectionAction +# .39 - allowedGroups +# .40 - exportOptions # # .3 - experimental LDAP objectClasses # .1 - debianDeveloper @@ -378,22 +380,20 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.2.37 SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# more attributes below +attributetype ( 1.3.6.1.4.1.9586.100.4.2.39 + NAME 'allowedGroups' + DESC 'Groups that have access to a host' + EQUALITY caseExactIA5Match + SUBSTR caseExactIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) -# Public object classes - -objectclass ( 1.3.6.1.4.1.9586.100.4.1.1 - NAME 'debianAccount' - DESC 'Abstraction of an account with POSIX attributes and UTF8 support' - SUP top AUXILIARY - MUST ( cn $ uid $ uidNumber $ gidNumber ) - MAY ( userPassword $ loginShell $ gecos $ homeDirectory $ description $ mailDisableMessage $ sudoPassword ) ) - -objectclass ( 1.3.6.1.4.1.9586.100.4.1.2 - NAME 'debianGroup' - SUP top STRUCTURAL - DESC 'attributes used for Debian groups' - MUST ( gid $ gidNumber ) - MAY ( description $ subGroup ) ) +attributetype ( 1.3.6.1.4.1.9586.100.4.2.40 + NAME 'exportOptions' + DESC 'export options for servers' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) # Experimental attribute types @@ -486,8 +486,24 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.2.38 DESC 'what to do on content inspection hits' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) + + +# Public object classes + +objectclass ( 1.3.6.1.4.1.9586.100.4.1.1 + NAME 'debianAccount' + DESC 'Abstraction of an account with POSIX attributes and UTF8 support' + SUP top AUXILIARY + MUST ( cn $ uid $ uidNumber $ gidNumber ) + MAY ( userPassword $ loginShell $ gecos $ homeDirectory $ description $ mailDisableMessage $ sudoPassword ) ) +objectclass ( 1.3.6.1.4.1.9586.100.4.1.2 + NAME 'debianGroup' + SUP top STRUCTURAL + DESC 'attributes used for Debian groups' + MUST ( gid $ gidNumber ) + MAY ( description $ subGroup $ accountStatus ) ) # Experimental objectclasses: @@ -512,7 +528,8 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.2 MUST ( host $ hostname ) MAY ( c $ access $ admin $ architecture $ bandwidth $ description $ disk $ distribution $ l $ machine $ memory $ sponsor $ - sponsor-admin $ sshRSAHostKey $ status $ purpose $ physicalHost + sponsor-admin $ status $ physicalHost $ ipHostNumber $ + sshRSAHostKey $ purpose $ allowedGroups $ exportOptions $ MXRecord ) ) objectclass ( 1.3.6.1.4.1.9586.100.4.3.3