You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@directory.apache.org by sm...@apache.org on 2016/05/02 21:07:32 UTC
directory-fortress-core git commit: use prefixes on OID's
Repository: directory-fortress-core
Updated Branches:
refs/heads/master ac39d735d -> b87766080
use prefixes on OID's
Project: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/repo
Commit: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/commit/b8776608
Tree: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/tree/b8776608
Diff: http://git-wip-us.apache.org/repos/asf/directory-fortress-core/diff/b8776608
Branch: refs/heads/master
Commit: b87766080fa096e66b6289accad62ba0de7dbba2
Parents: ac39d73
Author: Shawn McKinney <sm...@apache.org>
Authored: Mon May 2 14:07:24 2016 -0500
Committer: Shawn McKinney <sm...@apache.org>
Committed: Mon May 2 14:07:24 2016 -0500
----------------------------------------------------------------------
ldap/schema/fortress.schema | 95 ++++++++++++++++++++++------------------
1 file changed, 52 insertions(+), 43 deletions(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/directory-fortress-core/blob/b8776608/ldap/schema/fortress.schema
----------------------------------------------------------------------
diff --git a/ldap/schema/fortress.schema b/ldap/schema/fortress.schema
index a5dc04d..8e7900f 100644
--- a/ldap/schema/fortress.schema
+++ b/ldap/schema/fortress.schema
@@ -19,7 +19,7 @@
# under the License.
#
#
-### Fortress Schema version 1.0.0
+### Fortress Schema version 1.0.1
### This schema is required for all Apache Fortress Core deployments
### IANA PRIVATE ENTERPRISE NUMBER: 38088
### 1. Fortress Attributes: 1.3.6.1.4.1.38088.1.*
@@ -27,12 +27,21 @@
### 3. Fortress AUX Object Classes: 1.3.6.1.4.1.38088.3.*
######################################################################
+# Use this as basis for OID's to follow:
+objectidentifier ftBase 1.3.6.1.4.1.38088
+# Attributes:
+objectidentifier ftAtId ftBase:1
+# Object Classes:
+objectidentifier ftObId ftBase:2
+# Aux Object Classes:
+objectidentifier ftAxId ftBase:3
+
######################################################################
## 1. OpenLDAP Fortress attribute definitions
######################################################################
# A1: Permission Name, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.1
+attributetype ( ftAtId:1
NAME 'ftPermName'
DESC 'Fortress Permission Name'
EQUALITY caseIgnoreMatch
@@ -40,7 +49,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.1
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A2: Permission Operation Name, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.2
+attributetype ( ftAtId:2
NAME 'ftOpNm'
DESC 'Fortress Permission Operation Name'
EQUALITY caseIgnoreMatch
@@ -48,7 +57,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.2
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A3: Permission Object Name, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.3
+attributetype ( ftAtId:3
NAME 'ftObjNm'
DESC 'Fortress Permission Object Name'
EQUALITY caseIgnoreMatch
@@ -56,7 +65,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.3
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A4: Permission Object ID, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.4
+attributetype ( ftAtId:4
NAME 'ftObjId'
DESC 'Fortress Permission Object ID'
EQUALITY caseIgnoreMatch
@@ -64,7 +73,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.4
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A5: Role Name, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.5
+attributetype ( ftAtId:5
NAME 'ftRoleName'
DESC 'Fortress Role Name'
EQUALITY caseIgnoreMatch
@@ -72,7 +81,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.5
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A6: TimeOut, type INTEGER, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.6
+attributetype ( ftAtId:6
NAME 'ftTimeOut'
DESC 'Fortress TimeOut'
EQUALITY integerMatch
@@ -80,7 +89,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.6
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
# A7: Group Names, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.7
+attributetype ( ftAtId:7
NAME 'ftGroups'
DESC 'Fortress Group Names'
EQUALITY caseIgnoreMatch
@@ -88,7 +97,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.7
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A8: Role Names, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.8
+attributetype ( ftAtId:8
NAME 'ftRoles'
DESC 'Fortress Role Names'
EQUALITY caseIgnoreMatch
@@ -96,7 +105,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.8
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A9: User IDs, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.9
+attributetype ( ftAtId:9
NAME 'ftUsers'
DESC 'Fortress User IDs'
EQUALITY caseIgnoreMatch
@@ -104,7 +113,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.9
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A10: Properties, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.10
+attributetype ( ftAtId:10
NAME 'ftProps'
DESC 'Fortress Properties'
EQUALITY caseIgnoreMatch
@@ -112,7 +121,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.10
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A11: Type Name, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.11
+attributetype ( ftAtId:11
NAME 'ftType'
DESC 'Fortress Type Name'
EQUALITY caseIgnoreMatch
@@ -120,7 +129,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.11
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A12: Unique ID, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.12
+attributetype ( ftAtId:12
NAME 'ftId'
DESC 'Fortress Entity Unique ID'
EQUALITY caseIgnoreMatch
@@ -128,7 +137,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.12
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A13: User Temporal Constraint, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.13
+attributetype ( ftAtId:13
NAME 'ftCstr'
DESC 'Fortress User Temporal Constraint'
EQUALITY caseIgnoreMatch
@@ -136,7 +145,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.13
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A14: User Role Assignments, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.14
+attributetype ( ftAtId:14
NAME 'ftRA'
DESC 'Fortress User Role Assignments'
EQUALITY caseIgnoreMatch
@@ -144,7 +153,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.14
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A15: User Role Constraints, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.15
+attributetype ( ftAtId:15
NAME 'ftRC'
DESC 'Fortress User Role Constraints'
EQUALITY caseIgnoreMatch
@@ -152,7 +161,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.15
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A16: Separation of Duties Set Name, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.16
+attributetype ( ftAtId:16
NAME 'ftSetName'
DESC 'Fortress Separation of Duties Set Name'
EQUALITY caseIgnoreMatch
@@ -160,7 +169,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.16
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A17: Separation of Duties Set Cardinality, type INTEGER, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.17
+attributetype ( ftAtId:17
NAME 'ftSetCardinality'
DESC 'Fortress Separation of Duties Set Cardinality'
EQUALITY integerMatch
@@ -168,7 +177,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.17
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
# A18: Child to Parent Relationships, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.18
+attributetype ( ftAtId:18
NAME 'ftRels'
DESC 'Fortress Child to Parent Relationships'
EQUALITY caseIgnoreMatch
@@ -176,7 +185,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.18
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A19: User Organizational Unit Pool, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.19
+attributetype ( ftAtId:19
NAME 'ftOSU'
DESC 'Fortress User Organizational Unit Pool'
EQUALITY caseIgnoreMatch
@@ -184,7 +193,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.19
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A20: Permission Organizational Unit Pool, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.20
+attributetype ( ftAtId:20
NAME 'ftOSP'
DESC 'Fortress Permission Organizational Unit Pool'
EQUALITY caseIgnoreMatch
@@ -192,7 +201,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.20
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A21: Admin Role Constraints, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.21
+attributetype ( ftAtId:21
NAME 'ftARC'
DESC 'Fortress Admin Role Constraints'
EQUALITY caseIgnoreMatch
@@ -200,7 +209,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.21
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A22: Admin Role Assignments, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.22
+attributetype ( ftAtId:22
NAME 'ftARA'
DESC 'Fortress Admin Role Assignments'
EQUALITY caseIgnoreMatch
@@ -208,7 +217,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.22
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A23: Role Hierarchy Range, type STRING
-attributetype ( 1.3.6.1.4.1.1.38088.1.23
+attributetype ( ftAtId:23
NAME 'ftRange'
DESC 'Fortress Role Hierarchy Range'
EQUALITY caseIgnoreMatch
@@ -216,7 +225,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.23
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A24: Audit Modifier Internal UserID, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.24
+attributetype ( ftAtId:24
NAME 'ftModifier'
DESC 'Fortress Audit Modifier Internal UserID'
EQUALITY caseIgnoreMatch
@@ -224,7 +233,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.24
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A25: Audit Modifier Operation Code, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.25
+attributetype ( ftAtId:25
NAME 'ftModCode'
DESC 'Fortress Audit Modifier Operation Code'
EQUALITY caseIgnoreMatch
@@ -232,7 +241,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.25
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A26: Audit Modifier Unique ID, type STRING, SINGLE VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.26
+attributetype ( ftAtId:26
NAME 'ftModId'
DESC 'Fortress Audit Modifier Unique ID'
EQUALITY caseIgnoreMatch
@@ -240,14 +249,14 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.26
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
# A27: System User Flag, type BOOLEAN
-attributetype ( 1.3.6.1.4.1.1.38088.1.27
+attributetype ( ftAtId:27
NAME 'ftSystem'
DESC 'Fortress System User'
EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
# A28: Parent Nodes, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.28
+attributetype ( ftAtId:28
NAME 'ftParents'
DESC 'Fortress Parent Nodes'
EQUALITY caseIgnoreMatch
@@ -255,7 +264,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.28
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A29: Protocol, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.29
+attributetype ( ftAtId:29
NAME 'configProtocol'
DESC 'LDAP Group protocol attribute'
EQUALITY caseIgnoreMatch
@@ -263,7 +272,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.29
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
# A30: Config params, type STRING, MULTI VALUE
-attributetype ( 1.3.6.1.4.1.1.38088.1.30
+attributetype ( ftAtId:30
NAME 'configParameter'
DESC 'LDAP Group config properties'
EQUALITY caseIgnoreMatch
@@ -275,7 +284,7 @@ attributetype ( 1.3.6.1.4.1.1.38088.1.30
######################################################################
## OC1: Fortress Roles Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.1
+objectclass ( ftObId:1
NAME 'ftRls'
DESC 'Fortress Role Structural Object Class'
SUP organizationalrole
@@ -292,7 +301,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.1
)
## OC2: Fortress Permission Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.2
+objectclass ( ftObId:2
NAME 'ftObject'
DESC 'Fortress Permission Object Class'
SUP organizationalunit
@@ -307,7 +316,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.2
)
## OC3: Fortress Operation Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.3
+objectclass ( ftObId:3
NAME 'ftOperation'
DESC 'Fortress Permission Operation Structural Object Class'
SUP organizationalrole
@@ -327,7 +336,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.3
)
## OC4: Fortress Static Separation of Duties Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.4
+objectclass ( ftObId:4
NAME 'ftSSDSet'
DESC 'Fortress Role Static Separation of Duty Set Structural Object Class'
SUP organizationalrole
@@ -344,7 +353,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.4
)
## OC5: Fortress Dynamic Separation of Duties Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.5
+objectclass ( ftObId:5
NAME 'ftDSDSet'
DESC 'Fortress Role Dynamic Separation of Duty Set Structural Object Class'
SUP organizationalrole
@@ -361,7 +370,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.5
)
## OC6: Fortress Organizational Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.6
+objectclass ( ftObId:6
NAME 'ftOrgUnit'
DESC 'Fortress OrgUnit Structural Object Class'
SUP organizationalunit
@@ -375,7 +384,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.6
)
## OC7: Fortress Hierarchies Structural Object Class
-objectclass ( 1.3.6.1.4.1.38088.2.7
+objectclass ( ftObId:7
NAME 'ftHier'
DESC 'Fortress Hierarchy Structural Object Class'
SUP organizationalrole
@@ -390,7 +399,7 @@ objectclass ( 1.3.6.1.4.1.38088.2.7
)
## OC8: LDAP Configuration Group Structural Object Class
-objectClass ( 1.3.6.1.4.1.38088.2.8
+objectClass (ftObId:8
NAME 'configGroup'
DESC 'LDAP Configuration Group'
SUP groupOfNames
@@ -403,7 +412,7 @@ objectClass ( 1.3.6.1.4.1.38088.2.8
######################################################################
## AC1: Fortress User Attributes Auxiliary Object Class
-objectclass ( 1.3.6.1.4.1.38088.3.1
+objectclass ( ftAxId:1
NAME 'ftUserAttrs'
DESC 'Fortress User Attribute AUX Object Class'
AUXILIARY
@@ -421,7 +430,7 @@ objectclass ( 1.3.6.1.4.1.38088.3.1
)
## AC2: Fortress Properties Auxiliary Object Class
-objectclass ( 1.3.6.1.4.1.38088.3.2
+objectclass ( ftAxId:2
NAME 'ftProperties'
DESC 'Fortress Properties AUX Object Class'
AUXILIARY
@@ -431,7 +440,7 @@ objectclass ( 1.3.6.1.4.1.38088.3.2
)
## AC3: Fortress Organizational Pools Auxiliary Object Class
-objectclass ( 1.3.6.1.4.1.38088.3.3
+objectclass ( ftAxId:3
NAME 'ftPools'
DESC 'Fortress Pools AUX Object Class'
AUXILIARY
@@ -443,7 +452,7 @@ objectclass ( 1.3.6.1.4.1.38088.3.3
)
## AC4: Fortress Audit Modification Auxiliary Object Class
-objectclass ( 1.3.6.1.4.1.38088.3.4
+objectclass ( ftAxId:4
NAME 'ftMods'
DESC 'Fortress Modifiers AUX Object Class'
AUXILIARY