[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Proxy cache extension for OpenLDAP

To: "Pierangelo Masarati" <masarati@aero.polimi.it>, "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: RE: Proxy cache extension for OpenLDAP
From: "Howard Chu" <hyc@symas.com>
Date: Mon, 9 Sep 2002 03:36:45 -0700
Cc: "Apurva Kumar" <kapurva@in.ibm.com>, <openldap-devel@OpenLDAP.org>
Importance: Normal
In-reply-to: <courier.3D7C862B.00002CB4@mailsrv.aero.polimi.it>

> -----Original Message-----
> From: owner-openldap-devel@OpenLDAP.org
> [mailto:owner-openldap-devel@OpenLDAP.org]On Behalf Of Pierangelo
> Masarati

> Kurt D. Zeilenga writes:
> > That is, caching aside, back-ldap should be able to obtain
> > information using a common identity but return it only if
> > it matches per-user ACLs.
>
> Although feasible (and surely interesting) this doesn't ensure
> the same rights of the source are applied by the caching proxy

Right.

> (I realize the same applies to replicas; at this point it is
> unclear to me what's the difference between a proxy and a
> (partial?) replica.

The difference to the end-user is minimal. The main difference is whether
it's a push model or a pull model; slurpd pushes updates to the replicas
regardless of demand, while this approach pulls data into the proxy/replica
based on demand.

  -- Howard Chu
  Chief Architect, Symas Corp.       Director, Highland Sun
  http://www.symas.com               http://highlandsun.com/hyc
  Symas: Premier OpenSource Development and Support

References:
- Re: Proxy cache extension for OpenLDAP
  - From: "Pierangelo Masarati" <masarati@aero.polimi.it>

Prev by Date: Re: Proxy cache extension for OpenLDAP
Next by Date: RE: Proxy cache extension for OpenLDAP
Index(es):
- Chronological
- Thread