[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Proxy cache extension for OpenLDAP



> -----Original Message-----
> From: owner-openldap-devel@OpenLDAP.org
> [mailto:owner-openldap-devel@OpenLDAP.org]On Behalf Of Pierangelo
> Masarati

> Kurt D. Zeilenga writes:
> > That is, caching aside, back-ldap should be able to obtain
> > information using a common identity but return it only if
> > it matches per-user ACLs.
>
> Although feasible (and surely interesting) this doesn't ensure
> the same rights of the source are applied by the caching proxy

Right.

> (I realize the same applies to replicas; at this point it is
> unclear to me what's the difference between a proxy and a
> (partial?) replica.

The difference to the end-user is minimal. The main difference is whether
it's a push model or a pull model; slurpd pushes updates to the replicas
regardless of demand, while this approach pulls data into the proxy/replica
based on demand.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support