You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@directory.apache.org by Prasad Bodapati <pr...@pb.com> on 2014/07/31 11:02:02 UTC
Adding mail attribute to objectClass groupOfNames
Hi All
I have been trying to add mail attribute to existing objectClass groupOfNames. I could not find the objectClass groupOfNames in the OU schema ?
is there a another objectClass for group which have mail attribute ? If not How can I add to the groupOfNames or groupOfUniqueNames.
Is there any reason why ApacheDS does not have mail attribute for groupOfNames by default ?
Thanks & Regards
Prasad Bodapati, Software Engineer
Pitney Bowes Software
6 Hercules Way, Leavesden Park, Watford, Herts WD25 7GS
D: +441923 279174 | M: +447543399223 www.pb.com/software<http://www.pb.com/software>
prasad.bodapati@pb.com<ma...@pb.com>
Every connection is a new opportunity(tm)
[cid:image001.jpg@01CCCC61.199AA140]
Please consider the environment before printing or forwarding this email. If you do print this email, please recycle the paper.
This email message may contain confidential, proprietary and/or privileged information. It is intended only for the use of the intended recipient(s). If you have received it in error, please immediately advise the sender by reply email and then delete this email message. Any disclosure, copying, distribution or use of the information contained in this email message to or by anyone other than the intended recipient is strictly prohibited.
________________________________
RE: Adding mail attribute to objectClass groupOfNames
Posted by Prasad Bodapati <pr...@pb.com>.
-----Original Message-----
From: Emmanuel Lécharny [mailto:elecharny@gmail.com]
Sent: 31 July 2014 10:11
To: users@directory.apache.org
Subject: Re: Adding mail attribute to objectClass groupOfNames
Le 31/07/2014 11:02, Prasad Bodapati a écrit :
> Hi All
>
> I have been trying to add mail attribute to existing objectClass groupOfNames.
Don't do that. This ObkectClass is a part of the standardized LDAP Objectclasses, which is not meant to be modified.
Just create your own ObjectClass which extends the GroupOfNames ObjectClass.
yes I agree with you. I was not sure how to do that so I thought changing the existing one might be easier
> I could not find the objectClass groupOfNames in the OU schema ?
It's in cn=core.
yeah I found that.
> Is there any reason why ApacheDS does not have mail attribute for groupOfNames by default ?
because it's not part of RFC 4519 description :
3.5 <http://tools.ietf.org/html/rfc4519#section-3.5>. 'groupOfNames'
The 'groupOfNames' object class is the basis of an entry that
represents a set of named objects including information related to
the purpose or maintenance of the set.
(Source: X.521 [X.521 <http://tools.ietf.org/html/rfc4519#ref-X.521>])
( 2.5.6.9 NAME 'groupOfNames'
SUP top
STRUCTURAL
MUST ( member $
cn )
MAY ( businessCategory $
seeAlso $
owner $
ou $
o $
description ) )
Make sense, thanks.
________________________________
Re: Adding mail attribute to objectClass groupOfNames
Posted by Emmanuel Lécharny <el...@gmail.com>.
Le 31/07/2014 11:02, Prasad Bodapati a écrit :
> Hi All
>
> I have been trying to add mail attribute to existing objectClass groupOfNames.
Don't do that. This ObkectClass is a part of the standardized LDAP
Objectclasses, which is not meant to be modified.
Just create your own ObjectClass which extends the GroupOfNames ObjectClass.
> I could not find the objectClass groupOfNames in the OU schema ?
It's in cn=core.
> Is there any reason why ApacheDS does not have mail attribute for groupOfNames by default ?
because it's not part of RFC 4519 description :
3.5 <http://tools.ietf.org/html/rfc4519#section-3.5>. 'groupOfNames'
The 'groupOfNames' object class is the basis of an entry that
represents a set of named objects including information related to
the purpose or maintenance of the set.
(Source: X.521 [X.521 <http://tools.ietf.org/html/rfc4519#ref-X.521>])
( 2.5.6.9 NAME 'groupOfNames'
SUP top
STRUCTURAL
MUST ( member $
cn )
MAY ( businessCategory $
seeAlso $
owner $
ou $
o $
description ) )
RE: Adding mail attribute to objectClass groupOfNames
Posted by Prasad Bodapati <pr...@pb.com>.
It works.
Thank you very much very quick response.
Have a good day.
-----Original Message-----
From: Kiran Ayyagari [mailto:kayyagari@apache.org]
Sent: 31 July 2014 10:12
To: users@directory.apache.org
Subject: Re: Adding mail attribute to objectClass groupOfNames
On Thu, Jul 31, 2014 at 2:32 PM, Prasad Bodapati <pr...@pb.com>
wrote:
> Hi All
>
> I have been trying to add mail attribute to existing objectClass
> groupOfNames. I could not find the objectClass groupOfNames in the OU
> schema ?
>
mail attribute is part of inetOrgPerson objectClass
> is there a another objectClass for group which have mail attribute ?
> If not How can I add to the groupOfNames or groupOfUniqueNames.
>
one way to do this is, add the objectClass "extensibleObject" to this entry
containing "groupOfNames" or "groupOfUniqueNames" after which you can add
"mail" attribute
> Is there any reason why ApacheDS does not have mail attribute for
> groupOfNames by default ?
>
this is a standard objectClass, not specific to ApacheDS
>
>
>
>
> Thanks & Regards
>
> Prasad Bodapati, Software Engineer
>
> Pitney Bowes Software
>
> 6 Hercules Way, Leavesden Park, Watford, Herts WD25 7GS
>
> D: +441923 279174 | M: +447543399223 www.pb.com/software
>
>
>
> prasad.bodapati@pb.com <ma...@pb.com>
>
>
>
> Every connection is a new opportunity™
>
>
>
> [image: cid:image001.jpg@01CCCC61.199AA140]
>
>
>
>
>
> Please consider the environment before printing or forwarding this email.
> If you do print this email, please recycle the paper.
>
>
>
> This email message may contain confidential, proprietary and/or
> privileged information. It is intended only for the use of the intended recipient(s).
> If you have received it in error, please immediately advise the sender
> by reply email and then delete this email message. Any disclosure,
> copying, distribution or use of the information contained in this
> email message to or by anyone other than the intended recipient is strictly prohibited.
>
>
>
> ------------------------------
>
>
--
Kiran Ayyagari
http://keydap.com
________________________________
RE: Adding mail attribute to objectClass groupOfNames
Posted by Prasad Bodapati <pr...@pb.com>.
-----Original Message-----
From: Emmanuel Lécharny [mailto:elecharny@gmail.com]
Sent: 01 August 2014 09:38
To: users@directory.apache.org
Subject: Re: Adding mail attribute to objectClass groupOfNames
Le 01/08/2014 10:33, Prasad Bodapati a écrit :
> Thank you very much. The reason I wanted to add mail attribute is for testing purpose only.
> The API I am writing sync users and groups from any LDAP to SOLR. Whichever way my clients setup their LDAP all I need is "mail" attribute in their groups node.
>
> I am correct imagining that ApacheDS users will always have it ?
No. There is no such thing as an "apacheDS user". ApacheDS is an LDAP server, it only contains whatever you inject into it.
It's up to you to define what will go into the server, and the structure of your entries.
Yeah that make sense, thank you.
________________________________
Re: Adding mail attribute to objectClass groupOfNames
Posted by Emmanuel Lécharny <el...@gmail.com>.
Le 01/08/2014 10:33, Prasad Bodapati a écrit :
> Thank you very much. The reason I wanted to add mail attribute is for testing purpose only.
> The API I am writing sync users and groups from any LDAP to SOLR. Whichever way my clients setup their LDAP all I need is "mail" attribute in their groups node.
>
> I am correct imagining that ApacheDS users will always have it ?
No. There is no such thing as an "apacheDS user". ApacheDS is an LDAP
server, it only contains whatever you inject into it.
It's up to you to define what will go into the server, and the structure
of your entries.
RE: Adding mail attribute to objectClass groupOfNames
Posted by Prasad Bodapati <pr...@pb.com>.
Thank you very much. The reason I wanted to add mail attribute is for testing purpose only.
The API I am writing sync users and groups from any LDAP to SOLR. Whichever way my clients setup their LDAP all I need is "mail" attribute in their groups node.
I am correct imagining that ApacheDS users will always have it ?
-----Original Message-----
From: Emmanuel Lécharny [mailto:elecharny@gmail.com]
Sent: 01 August 2014 09:29
To: users@directory.apache.org
Subject: Re: Adding mail attribute to objectClass groupOfNames
Le 01/08/2014 09:37, Jim Willeke a écrit :
> You should/could create an aux class containing the additional
> attributes you desire and add the AUX class to the entry, rather than
> modify an existing "standard" class.
That's also an option. ALl in all, you have now 2 possibilities :
- create you own ObjectClass extending the groupOfnames ObjectClass with an additional AttributeType, and use it for your entries
- create an Auxiliary OvjectClass containing the needed AttrributeType, and add it to your entries.
________________________________
Re: Adding mail attribute to objectClass groupOfNames
Posted by Emmanuel Lécharny <el...@gmail.com>.
Le 01/08/2014 09:37, Jim Willeke a écrit :
> You should/could create an aux class containing the additional attributes
> you desire and add the AUX class to the entry, rather than modify an
> existing "standard" class.
That's also an option. ALl in all, you have now 2 possibilities :
- create you own ObjectClass extending the groupOfnames ObjectClass with
an additional AttributeType, and use it for your entries
- create an Auxiliary OvjectClass containing the needed AttrributeType,
and add it to your entries.
Re: Adding mail attribute to objectClass groupOfNames
Posted by Jim Willeke <ji...@willeke.com>.
You should/could create an aux class containing the additional attributes
you desire and add the AUX class to the entry, rather than modify an
existing "standard" class.
-jim
ᐧ
--
-jim
Jim Willeke
On Thu, Jul 31, 2014 at 6:38 PM, Emmanuel Lecharny <el...@apache.org>
wrote:
> Please don't post message to me directly. Post them to the mailing list.
>
> yes, extending the gtoupOfNames ObjectClass is the standard best practice.
> Modifying it is really a wrong idea. You would lose the compatibility with
> all the LDAP servers out there, and any migration to a newer version of any
> server will require you to modify the standard schema.
>
> And, no, you won't be in trouble with your client : just explain him that
> it's not an option. Ususally, clients are smarter than we think...
>
>
> On Thu, Jul 31, 2014 at 1:48 PM, Prasad Bodapati <pr...@pb.com>
> wrote:
>
> > Sorry, I have read that but I have missed your suggestion.
> > I am writing an API which sync data from ApacheDS to SOLR.
> >
> > So is that normal to extend the groupOfNames class ? If my client does
> not
> > do that I might be in trouble.
> >
> > -----Original Message-----
> > From: Emmanuel Lécharny [mailto:elecharny@gmail.com]
> > Sent: 31 July 2014 12:32
> > To: Prasad Bodapati
> > Subject: Re: Adding mail attribute to objectClass groupOfNames
> >
> > > Then what is the best way to add mail then ?
> >
> > Did you read my previous mail ?
> >
> >
> > ________________________________
> >
> >
>
>
> --
> Regards,
> Cordialement,
> Emmanuel Lécharny
> www.iktek.com
>
Re: Adding mail attribute to objectClass groupOfNames
Posted by Emmanuel Lecharny <el...@apache.org>.
Please don't post message to me directly. Post them to the mailing list.
yes, extending the gtoupOfNames ObjectClass is the standard best practice.
Modifying it is really a wrong idea. You would lose the compatibility with
all the LDAP servers out there, and any migration to a newer version of any
server will require you to modify the standard schema.
And, no, you won't be in trouble with your client : just explain him that
it's not an option. Ususally, clients are smarter than we think...
On Thu, Jul 31, 2014 at 1:48 PM, Prasad Bodapati <pr...@pb.com>
wrote:
> Sorry, I have read that but I have missed your suggestion.
> I am writing an API which sync data from ApacheDS to SOLR.
>
> So is that normal to extend the groupOfNames class ? If my client does not
> do that I might be in trouble.
>
> -----Original Message-----
> From: Emmanuel Lécharny [mailto:elecharny@gmail.com]
> Sent: 31 July 2014 12:32
> To: Prasad Bodapati
> Subject: Re: Adding mail attribute to objectClass groupOfNames
>
> > Then what is the best way to add mail then ?
>
> Did you read my previous mail ?
>
>
> ________________________________
>
>
--
Regards,
Cordialement,
Emmanuel Lécharny
www.iktek.com
RE: Adding mail attribute to objectClass groupOfNames
Posted by Prasad Bodapati <pr...@pb.com>.
-----Original Message-----
From: Emmanuel Lecharny [mailto:elecharny@apache.org]
Sent: 31 July 2014 11:01
To: users@directory.apache.org
Subject: Re: Adding mail attribute to objectClass groupOfNames
Le 31 juil. 2014 11:11, "Kiran Ayyagari" <ka...@apache.org> a écrit :
>
> > is there a another objectClass for group which have mail attribute
> > ? If not How can I add to the groupOfNames or groupOfUniqueNames.
> >
> one way to do this is, add the objectClass "extensibleObject" to this
entry
> containing "groupOfNames" or "groupOfUniqueNames" after which you can
add
> "mail" attribute
Don't do that !!! ExtensibleObject serves other purposes (mainly dealing with referals to other servers which might not have the same AT/OC)
Then what is the best way to add mail then ?
________________________________
Re: Adding mail attribute to objectClass groupOfNames
Posted by Emmanuel Lecharny <el...@apache.org>.
Le 31 juil. 2014 11:11, "Kiran Ayyagari" <ka...@apache.org> a écrit :
>
> > is there a another objectClass for group which have mail attribute ? If
> > not How can I add to the groupOfNames or groupOfUniqueNames.
> >
> one way to do this is, add the objectClass "extensibleObject" to this
entry
> containing "groupOfNames" or "groupOfUniqueNames" after which you can
add
> "mail" attribute
Don't do that !!! ExtensibleObject serves other purposes (mainly dealing
with referals to other servers which might not have the same AT/OC)
Re: Adding mail attribute to objectClass groupOfNames
Posted by Kiran Ayyagari <ka...@apache.org>.
On Thu, Jul 31, 2014 at 2:32 PM, Prasad Bodapati <pr...@pb.com>
wrote:
> Hi All
>
> I have been trying to add mail attribute to existing objectClass
> groupOfNames. I could not find the objectClass groupOfNames in the OU
> schema ?
>
mail attribute is part of inetOrgPerson objectClass
> is there a another objectClass for group which have mail attribute ? If
> not How can I add to the groupOfNames or groupOfUniqueNames.
>
one way to do this is, add the objectClass "extensibleObject" to this entry
containing "groupOfNames" or "groupOfUniqueNames" after which you can add
"mail" attribute
> Is there any reason why ApacheDS does not have mail attribute for
> groupOfNames by default ?
>
this is a standard objectClass, not specific to ApacheDS
>
>
>
>
> Thanks & Regards
>
> Prasad Bodapati, Software Engineer
>
> Pitney Bowes Software
>
> 6 Hercules Way, Leavesden Park, Watford, Herts WD25 7GS
>
> D: +441923 279174 | M: +447543399223 www.pb.com/software
>
>
>
> prasad.bodapati@pb.com <ma...@pb.com>
>
>
>
> Every connection is a new opportunity™
>
>
>
> [image: cid:image001.jpg@01CCCC61.199AA140]
>
>
>
>
>
> Please consider the environment before printing or forwarding this email.
> If you do print this email, please recycle the paper.
>
>
>
> This email message may contain confidential, proprietary and/or privileged
> information. It is intended only for the use of the intended recipient(s).
> If you have received it in error, please immediately advise the sender by
> reply email and then delete this email message. Any disclosure, copying,
> distribution or use of the information contained in this email message to
> or by anyone other than the intended recipient is strictly prohibited.
>
>
>
> ------------------------------
>
>
--
Kiran Ayyagari
http://keydap.com