X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=userdir-ldap.schema;h=78809c8918383a6e2660178bd7ad26183d4daa83;hb=94816beef8147934e62e2e864b116ab65e6572f1;hp=f9c96a4427164a3d73056294ba26db262d4ee137;hpb=9226811a30c63b167221ac9a4df7c71bf3bcaefe;p=mirror%2Fuserdir-ldap.git diff --git a/userdir-ldap.schema b/userdir-ldap.schema index f9c96a4..78809c8 100644 --- a/userdir-ldap.schema +++ b/userdir-ldap.schema @@ -1,9 +1,12 @@ # Revision history: # -# XXX +# - [PP] Now version controlled in db.d.o git repository, also see debian/changelog - 2009 # - [PP] Now version controlled in db.d.o bzr repository - 2007-12-25 +# +# long time ago: # - [HE] Add 'purpose', 'physicalHost' to debianServer - 2007-12-25 # - [zobel] Add 'VoIP' - 2008-05-10 +# - [luk] Add 'subGroup' to group - 2008-11-22 # # 0.7 [RM] # - Add 'gender' and 'birthDate' to debianDeveloper @@ -99,6 +102,10 @@ # .34 - physicalHost # .35 - VoIP # .36 - sudoPassword +# .37 - subGroup +# .38 - mailContentInspectionAction +# .39 - allowedGroups +# .40 - exportOptions # # .3 - experimental LDAP objectClasses # .1 - debianDeveloper @@ -364,8 +371,29 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.2.36 NAME 'sudoPassword' DESC 'sudo password' EQUALITY octetStringMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 ) + +attributetype ( 1.3.6.1.4.1.9586.100.4.2.37 + NAME 'subGroup' + DESC 'name of other group for which membership implied by memberschip to this group' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + +# more attributes below +attributetype ( 1.3.6.1.4.1.9586.100.4.2.39 + NAME 'allowedGroups' + DESC 'Groups that have access to a host' + EQUALITY caseExactIA5Match + SUBSTR caseExactIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +attributetype ( 1.3.6.1.4.1.9586.100.4.2.40 + NAME 'exportOptions' + DESC 'export options for servers' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) # Public object classes @@ -381,7 +409,7 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.1.2 SUP top STRUCTURAL DESC 'attributes used for Debian groups' MUST ( gid $ gidNumber ) - MAY ( description ) ) + MAY ( description $ subGroup ) ) # Experimental attribute types @@ -469,6 +497,14 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.4.13 SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} ) +attributetype ( 1.3.6.1.4.1.9586.100.4.2.38 + NAME 'mailContentInspectionAction' + DESC 'what to do on content inspection hits' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) + + # Experimental objectclasses: objectclass ( 1.3.6.1.4.1.9586.100.4.3.1 @@ -482,7 +518,7 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.1 jabberJID $ keyFingerPrint $ latitude $ longitude $ mn $ onVacation $ privateSub $ sshRSAAuthKey $ supplementaryGid $ access $ gender $ birthDate $ mailCallout $ mailGreylisting $ - mailRBL $ mailRHSBL $ mailWhitelist $ VoIP + mailRBL $ mailRHSBL $ mailWhitelist $ VoIP $ mailContentInspectionAction ) ) objectclass ( 1.3.6.1.4.1.9586.100.4.3.2 @@ -492,7 +528,8 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.2 MUST ( host $ hostname ) MAY ( c $ access $ admin $ architecture $ bandwidth $ description $ disk $ distribution $ l $ machine $ memory $ sponsor $ - sponsor-admin $ sshRSAHostKey $ status $ purpose $ physicalHost + sponsor-admin $ status $ physicalHost $ ipHostNumber $ + sshRSAHostKey $ purpose $ allowedGroups $ exportOptions ) ) objectclass ( 1.3.6.1.4.1.9586.100.4.3.3 @@ -501,5 +538,5 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.3 SUP account STRUCTURAL MAY ( emailForward $ supplementaryGid $ allowedHost $ labeledURI $ mailCallout $ mailGreylisting $ mailRBL $ mailRHSBL $ - mailWhitelist + mailWhitelist $ dnsZoneEntry $ mailContentInspectionAction ) )