[Date Prev][Date Next] [Chronological] [Thread] [Top]

search LDAP back-sql entry with two objectclasses (structural and auxiliary)

To: openldap-technical@openldap.org
Subject: search LDAP back-sql entry with two objectclasses (structural and auxiliary)
From: Andreas Härtel <andreas@anno1982.de>
Date: Wed, 16 Feb 2011 02:06:59 +0100
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.1.15) Gecko/20101027 Fedora/3.0.10-1.fc12 Lightning/1.0b2pre Thunderbird/3.0.10

Hello,

I am running a LDAP server on a debian system with a mySQL database as
backend.

slapd-version:
$OpenLDAP: slapd 2.4.11 (Jul 24 2010 08:14:20)
$@murphy:/build/buildd-openldap_2.4.11-1+lenny2-i386-H5BDjb/openldap-2.4.11/debian/build/servers/slapd

mysql-version:
mysql  Ver 14.12 Distrib 5.0.51a, for debian-linux-gnu (i486) using
readline 5.2

Everything is running fine if I am searching the LDAP tree for data
containing only one objectClass (inetOrgPerson). Now I have add a second
auxiliary objectClass (mozillaAbPersonAlpha) to my data via
ldap_entry_objclasses table in the mySQL database, but a search only
results in the three inetOrgPerson fields I have set:

ldapsearch -LLL -s sub -b 'ou=contacts,ou=contacts,dc=...'
'objectclass=*' -D 'cn=USER' -w unsafe-password -x
dn: ou=contacts,ou=contacts,dc=...
objectClass: organizationalUnit
objectClass: inetOrgPerson
objectClass: mozillaAbPersonAlpha
ou: contacts

dn: cn=Name Firstname,ou=contacts,ou=contacts,dc=...
objectClass: inetOrgPerson
cn: Name Firstname
sn: Name
givenName: Firstname

If I switch the dependency in the ldap_entries table from inetOrgPerson
to the mozilla scheme, I get the mozilla fields but - e.g. in
phpldapadmin - I can not see any data (also in my thunderbird
addressbook). My opinion: mozilla scheme is not structural.

Perhaps this old mailing-list entry gives an answer but - for me myself
- no solution:
http://www.openldap.org/lists/openldap-software/200403/msg00303.html

Hope, someone has any idea about this problem ... !?
Tanks a lot,

Andreas




My /etc/ldap/slapd.conf file (parts of it):
#################################################################
include         /etc/ldap/schema/core.schema
include         /etc/ldap/schema/cosine.schema
include         /etc/ldap/schema/nis.schema
include         /etc/ldap/schema/inetorgperson.schema
include         /etc/ldap/schema/extension.schema
include         /etc/ldap/schema/mozillaAbPersonAlpha.schema

pidfile         /var/run/slapd/slapd.pid
argsfile        /var/run/slapd/slapd.args
loglevel        256
modulepath      /usr/lib/ldap
moduleload      back_hdb
moduleload      back_sql

sizelimit 500
tool-threads 1

backend         hdb
backend                sql

database        sql

suffix          "ou=contacts,ou=contacts,dc=...
dbname          contacts
dbhost          localhost
dbuser          myuser
dbpasswd        mypassword
lastmod off
has_ldapinfo_dn_ru      no
upper_func      "upper"

access to dn.subtree="ou=contacts,ou=contacts,dc=...
        by dn="cn=admin,dc=..." peername.ip=127.0.0.1 write
        by dn="cn=user" read
        by * none
#################################################################

I thought about ataching my database entries but this could be too long.
If there should be questions about it, please let me know.

Follow-Ups:
- Re: search LDAP back-sql entry with two objectclasses (structural and auxiliary)
  - From: Andreas Härtel <andreas@anno1982.de>

Prev by Date: Re: Aliasing entries with reserved characters
Next by Date: Re: Aliasing entries with reserved characters
Index(es):
- Chronological
- Thread