You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "Emmanuel Lécharny (Jira)" <ji...@apache.org> on 2019/12/27 13:36:00 UTC

[jira] [Commented] (DIRSERVER-2295) posixGroup schema incomplete

    [ https://issues.apache.org/jira/browse/DIRSERVER-2295?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17004191#comment-17004191 ] 

Emmanuel Lécharny commented on DIRSERVER-2295:
----------------------------------------------

The schema is correct :

 

{noformat}

objectclass ( 1.3.6.1.1.1.2.2 NAME 'posixGroup'
 DESC 'Abstraction of a group of accounts'
 SUP top
 STRUCTURAL
 MUST ( cn $ gidNumber )
 MAY ( userPassword $ memberUid $ description ) )

{noformat}

and in {{git}} :

{noformat}
version: 1
dn: m-oid=1.3.6.1.1.1.2.2,ou=objectClasses,cn=nis,ou=schema
m-must: cn
m-must: gidNumber
m-oid: 1.3.6.1.1.1.2.2
m-obsolete: FALSE
m-supobjectclass: top
m-description: Abstraction of a group of accounts
objectclass: metaObjectClass
objectclass: metaTop
objectclass: top
m-name: posixGroup
m-typeobjectclass: STRUCTURAL
creatorsname: uid=admin,ou=system
m-may: userPassword
m-may: memberUid
m-may: description
{noformat}
 

and it was for more than a decade.


*but* I can see that if I install Studio and check the {{nis}} schema file in {{~/.ApacheDirectoryStudio/.metadata/.plugins/org.apache.directory.studio.ldapservers/servers/a206606f-f51b-4017-8d45-89c44d8fdcb5/partitions/schema/ou=schema/cn=nis/ou=objectclasses/m-oid=1.3.6.1.1.1.2.2.ldif}}, the {{gidnumber}} attribute is missing :

{noformat}
version: 1
dn: m-oid=1.3.6.1.1.1.2.2,ou=objectClasses,cn=nis,ou=schema
entryCSN: 20191105121237.132000Z#000000#000#000000
creatorsname: uid=admin,ou=system
entryUUID: 982841f8-726e-411a-b300-ebc6ba3effbf
m-may: userPassword
m-may: description
m-typeobjectclass: STRUCTURAL
m-supobjectclass: top
m-must: cn
m-description: Abstraction of a group of accounts
m-obsolete: FALSE
m-oid: 1.3.6.1.1.1.2.2
objectclass: metaObjectClass
objectclass: metaTop
objectclass: top
createTimestamp: 20191105121238.011Z
m-name: posixGroup
entryParentId: 132063e7-e05d-4eb3-9222-5dcc05bcad2d
{noformat}

 
There is something utterly wrong, and we need to investigate this.

Thanks for the report !


> posixGroup schema incomplete
> ----------------------------
>
>                 Key: DIRSERVER-2295
>                 URL: https://issues.apache.org/jira/browse/DIRSERVER-2295
>             Project: Directory ApacheDS
>          Issue Type: Improvement
>          Components: schema
>    Affects Versions: 2.0.0.AM25
>            Reporter: Grant McKenzie
>            Priority: Major
>         Attachments: screenshot-1.png, spec.png
>
>
> (newbie alert)
>  
> The posixGroup object class definition seems incomplete
> According to the spec:
> [https://ldapwiki.com/wiki/PosixGroup]
> must include gidNumber
> That is not available via directory studio however. There is only one m-must attribute, and that is for cn.
>  
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@directory.apache.org
For additional commands, e-mail: dev-help@directory.apache.org