[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: attrs=@objectClassName affects objectClass attribute

To: openldap-technical@openldap.org
Subject: Re: attrs=@objectClassName affects objectClass attribute
From: Nick Milas <nick@eurobjects.com>
Date: Wed, 06 Jun 2012 22:25:14 +0300
In-reply-to: <B0919292CB202BBEC0652096@[192.168.1.34]>
References: <4FCF6BCB.7050807@eurobjects.com> <20120606151939.GA80965@jmbp.ww.mens.de> <4FCF78FE.1030605@symas.com> <20120606170604.GB77515@jmbp.ww.mens.de> <193E97F1EC047EFAD6E25CD0@[192.168.1.34]> <B0919292CB202BBEC0652096@[192.168.1.34]>
User-agent: Mozilla/5.0 (Windows NT 5.1; rv:12.0) Gecko/20120428 Thunderbird/12.0.1

On 6/6/2012 9:03 ÎÎ, Quanah Gibson-Mount wrote:

Discussed with Howard. That is how the standard track RFCs definethose objectClasses, but in general, you don't want to do this withyour custom AUX objectClasses. Really the RFC defined oc's should befixed via another RFC, but fat chance of that happening.
If you truly want to inherit from top for your AUX objectClases in theschema definition, then add an ACL granting access to the objectClassattribute as one of your first ACL entries.

OK, I removed "SUP top" from the schema definition (following aboverecommendation and hoping that I am not going to drive into any issuedown the road), and now it works as expected.

Since it is not uncommon for admins to create/use custom schemas (evennot being experts in LDAP RFCs), it might be useful to put together (atthe project's convenience) a short list of such considerations for uspoor LDAP men. :-)


Thank you for all the help.

Regards,
Nick

Follow-Ups:
- Re: attrs=@objectClassName affects objectClass attribute
  - From: Michael StrÃder <michael@stroeder.com>
- Object Class Best Practices (was Re: attrs=@objectClassName affects objectClass attribute)
  - From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>

References:
- attrs=@objectClassName affects objectClass attribute
  - From: Nick Milas <nick@eurobjects.com>
- Re: attrs=@objectClassName affects objectClass attribute
  - From: Jan-Piet Mens <jpmens.dns@gmail.com>
- Re: attrs=@objectClassName affects objectClass attribute
  - From: Howard Chu <hyc@symas.com>
- Re: attrs=@objectClassName affects objectClass attribute
  - From: Jan-Piet Mens <jpmens.dns@gmail.com>
- Re: attrs=@objectClassName affects objectClass attribute
  - From: Quanah Gibson-Mount <quanah@zimbra.com>
- Re: attrs=@objectClassName affects objectClass attribute
  - From: Quanah Gibson-Mount <quanah@zimbra.com>

Prev by Date: Re: attrs=@objectClassName affects objectClass attribute
Next by Date: Re: attrs=@objectClassName affects objectClass attribute
Index(es):
- Chronological
- Thread