You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@directory.apache.org by "Emmanuel Lécharny (Jira)" <ji...@apache.org> on 2020/03/29 15:16:00 UTC
[jira] [Commented] (DIRSERVER-2298) AM25 nis schema objectClasses
missing must/attributes
[ https://issues.apache.org/jira/browse/DIRSERVER-2298?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17070381#comment-17070381 ]
Emmanuel Lécharny commented on DIRSERVER-2298:
----------------------------------------------
So doing some (late) search here is what I find :
- the {{NIS}} schema is properly loaded in the {{SchemaManager}}
- the {{PosixAccount}} ObjectClass is also properly loaded:
{code:java}
ObjectClass posixAccout = service.getSchemaManager().getObjectClassRegistry().get( "1.3.6.1.1.1.2.0" );
System.out.println( posixAccout );
{code}
gives:
{noformat}
objectclass ( 1.3.6.1.1.1.2.0 NAME 'posixAccount'
DESC 'Abstraction of an account with POSIX attributes'
SUP top
AUXILIARY
MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory )
MAY ( userPassword $ loginShell $ gecos $ description ) )
{noformat}
I'm now investigation a search done from the outside of the server's initialization, because when I browse the schema using the LdapBrowser, here is what I get;
{noformat}dn: m-oid=1.3.6.1.1.1.2.0,ou=objectClasses,cn=nis,ou=schema
objectclass: top
objectclass: metaTop
objectclass: metaObjectClass
m-oid: 1.3.6.1.1.1.2.0
m-description: Abstraction of an account with POSIX attributes
m-may: userPassword
m-may: description
m-must: cn
m-must: uid
m-name: posixAccount
m-obsolete: FALSE
m-supobjectclass: top
m-typeobjectclass: AUXILIARY
{noformat}
which is obviously wrong...
> AM25 nis schema objectClasses missing must/attributes
> -----------------------------------------------------
>
> Key: DIRSERVER-2298
> URL: https://issues.apache.org/jira/browse/DIRSERVER-2298
> Project: Directory ApacheDS
> Issue Type: Bug
> Components: config
> Affects Versions: 2.0.0.AM25
> Environment: linux command line ldap tools, but also apacheds studio.
> Reporter: Brian Burch
> Priority: Minor
>
> The nis schema with M23 was 100% compatible with the openldap and rfc2307 definitions of posixAccount and posixGroup. Apparently, these have not changed for at least a decade.
> After a clean install from git source and creating a new user partition, the schema has changed significantly. ( n.b. The schema can be enabled in the usual manner)>
> # It is impossible to create a new posixUser, posixGroup, or even assign these objectclasses to and existing user or group.
> # ldif files which successfully modified the schema with M23 no longer work with AM25 because the dn's of these two objectclass schema entries have changed!
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@directory.apache.org
For additional commands, e-mail: dev-help@directory.apache.org