X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=userdir-ldap.schema;h=d0def19f89f487a7fff110036ca56c3ab9cab4b3;hb=e13094c6dcebe4f8fec69963212942d49d3e2ac2;hp=85e1bde4a4b340ea7d3f836ec98026f922a428ae;hpb=acb95c57a55058d3fee491f8b5f8c55cb494392c;p=mirror%2Fuserdir-ldap.git diff --git a/userdir-ldap.schema b/userdir-ldap.schema index 85e1bde..d0def19 100644 --- a/userdir-ldap.schema +++ b/userdir-ldap.schema @@ -109,6 +109,9 @@ # .41 - sshdistAuthKeysHost # .42 - dnsTTL # .43 - webPassword +# .44 - rtcPassword +# .45 - rebootPolicy +# .46 - totpSeed # # .3 - experimental LDAP objectClasses # .1 - debianDeveloper @@ -130,6 +133,7 @@ # .13 - whitelist # .14 - bATVToken # .15 - mailDefaultOptions +# .16 - mailPreserveSuffixSeparator # Public attribute types attributetype ( 1.3.6.1.4.1.9586.100.4.2.1 @@ -406,6 +410,12 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.2.43 EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 ) +attributetype ( 1.3.6.1.4.1.9586.100.4.2.44 + NAME 'rtcPassword' + DESC 'rtc password for SIP/XMPP' + EQUALITY octetStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 ) + # Experimental attribute types # There are existing schemas for doing DNS in LDAP; would one of @@ -504,6 +514,13 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.4.15 EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE ) +attributetype ( 1.3.6.1.4.1.9586.100.4.4.16 + NAME 'mailPreserveSuffixSeparator' + DESC 'suffix serparator' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{1} ) + attributetype ( 1.3.6.1.4.1.9586.100.4.2.38 NAME 'mailContentInspectionAction' DESC 'what to do on content inspection hits' @@ -521,6 +538,19 @@ attributetype ( 1.3.6.1.4.1.9586.100.4.4.42 EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) +attributetype ( 1.3.6.1.4.1.9586.100.4.4.45 + NAME 'rebootPolicy' + DESC 'which procedure to use for rebooting this host' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} ) + +attributetype ( 1.3.6.1.4.1.9586.100.4.4.46 + NAME 'totpSeed' + DESC 'Seed for TOTP authentication' + EQUALITY octetStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 ) + # Public object classes objectclass ( 1.3.6.1.4.1.9586.100.4.1.1 @@ -528,14 +558,14 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.1.1 DESC 'Abstraction of an account with POSIX attributes and UTF8 support' SUP top AUXILIARY MUST ( cn $ uid $ uidNumber $ gidNumber ) - MAY ( userPassword $ loginShell $ gecos $ homeDirectory $ description $ mailDisableMessage $ sudoPassword $ webPassword ) ) + MAY ( userPassword $ loginShell $ gecos $ homeDirectory $ description $ mailDisableMessage $ sudoPassword $ webPassword $ rtcPassword $ totpSeed ) ) objectclass ( 1.3.6.1.4.1.9586.100.4.1.2 NAME 'debianGroup' SUP top STRUCTURAL DESC 'attributes used for Debian groups' MUST ( gid $ gidNumber ) - MAY ( description $ subGroup $ accountStatus ) ) + MAY ( cn $ description $ subGroup $ accountStatus ) ) # Experimental objectclasses: @@ -551,7 +581,7 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.1 onVacation $ privateSub $ sshRSAAuthKey $ supplementaryGid $ access $ gender $ birthDate $ mailCallout $ mailGreylisting $ mailRBL $ mailRHSBL $ mailWhitelist $ VoIP $ mailContentInspectionAction $ - bATVToken $ mailDefaultOptions + bATVToken $ mailDefaultOptions $ mailPreserveSuffixSeparator ) ) objectclass ( 1.3.6.1.4.1.9586.100.4.3.2 @@ -563,7 +593,7 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.2 distribution $ l $ machine $ memory $ sponsor $ sponsor-admin $ status $ physicalHost $ ipHostNumber $ dnsTTL $ sshRSAHostKey $ purpose $ allowedGroups $ exportOptions $ MXRecord $ - sshdistAuthKeysHost + sshdistAuthKeysHost $ rebootPolicy ) ) objectclass ( 1.3.6.1.4.1.9586.100.4.3.3 @@ -573,5 +603,5 @@ objectclass ( 1.3.6.1.4.1.9586.100.4.3.3 MAY ( emailForward $ supplementaryGid $ allowedHost $ labeledURI $ mailCallout $ mailGreylisting $ mailRBL $ mailRHSBL $ mailWhitelist $ dnsZoneEntry $ mailContentInspectionAction $ - bATVToken $ mailDefaultOptions $ sshRSAAuthKey + bATVToken $ mailDefaultOptions $ sshRSAAuthKey $ mailPreserveSuffixSeparator ) )