X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=servers%2Fslapd%2Fschema%2Fnis.schema;h=4e42f9f781ab0c7089e2e3747f2e21c436fdffd4;hb=a4d161cff64c74e03e5898eae104d5d52cc54a91;hp=54ac1dffa88eb1b87a9dcadeb6b5c199ea0f4462;hpb=74ff3310146558dbe84e0d43dac396c864d8b705;p=openldap

diff --git a/servers/slapd/schema/nis.schema b/servers/slapd/schema/nis.schema
index 54ac1dffa8..4e42f9f781 100644
--- a/servers/slapd/schema/nis.schema
+++ b/servers/slapd/schema/nis.schema
@@ -1,5 +1,21 @@
-
-# Definitions from RFC2307
+# $OpenLDAP$
+## This work is part of OpenLDAP Software <http://www.openldap.org/>.
+##
+## Copyright 1998-2006 The OpenLDAP Foundation.
+## All rights reserved.
+##
+## Redistribution and use in source and binary forms, with or without
+## modification, are permitted only as authorized by the OpenLDAP
+## Public License.
+##
+## A copy of this license is available in the file LICENSE in the
+## top-level directory of the distribution or, alternatively, at
+## <http://www.OpenLDAP.org/license.html>.
+
+# Definitions from RFC2307 (Experimental)
+#	An Approach for Using LDAP as a Network Information Service
+
+# Depends upon core.schema and cosine.schema
 
 # Note: The definitions in RFC2307 are given in syntaxes closely related
 # to those in RFC2252, however, some liberties are taken that are not
@@ -10,223 +26,212 @@
 # i.e. nisSchema in RFC2307 is 1.3.6.1.1.1
 #
 # Syntaxes are under 1.3.6.1.1.1.0 (two new syntaxes are defined)
+#	validaters for these syntaxes are incomplete, they only
+#	implement printable string validation (which is good as the
+#	common use of these syntaxes violates the specification).
 # Attribute types are under 1.3.6.1.1.1.1
 # Object classes are under 1.3.6.1.1.1.2
 
 # Attribute Type Definitions
 
-attribute ( 1.3.6.1.1.1.1.0 NAME 'uidNumber'
-	DESC 'An integer uniquely identifying a user in an administrative domain'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
+# builtin
+#attributetype ( 1.3.6.1.1.1.1.0 NAME 'uidNumber'
+#	DESC 'An integer uniquely identifying a user in an administrative domain'
+#	EQUALITY integerMatch
+#	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.1 NAME 'gidNumber'
-	DESC 'An integer uniquely identifying a group in an administrative domain'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# TBC: caseIgnoreIA5SubstringsMatch is not defined
+# builtin
+#attributetype ( 1.3.6.1.1.1.1.1 NAME 'gidNumber'
+#	DESC 'An integer uniquely identifying a group in an administrative domain'
+#	EQUALITY integerMatch
+#	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.2 NAME 'gecos'
+attributetype ( 1.3.6.1.1.1.1.2 NAME 'gecos'
 	DESC 'The GECOS field; the common name'
 	EQUALITY caseIgnoreIA5Match
+	SUBSTR caseIgnoreIA5SubstringsMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.3 NAME 'homeDirectory'
+attributetype ( 1.3.6.1.1.1.1.3 NAME 'homeDirectory'
 	DESC 'The absolute path to the home directory'
 	EQUALITY caseExactIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.4 NAME 'loginShell'
+attributetype ( 1.3.6.1.1.1.1.4 NAME 'loginShell'
 	DESC 'The path to the login shell'
 	EQUALITY caseExactIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange'
+attributetype ( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.6 NAME 'shadowMin'
+attributetype ( 1.3.6.1.1.1.1.6 NAME 'shadowMin'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.7 NAME 'shadowMax'
+attributetype ( 1.3.6.1.1.1.1.7 NAME 'shadowMax'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.8 NAME 'shadowWarning'
+attributetype ( 1.3.6.1.1.1.1.8 NAME 'shadowWarning'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.9 NAME 'shadowInactive'
+attributetype ( 1.3.6.1.1.1.1.9 NAME 'shadowInactive'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.10 NAME 'shadowExpire'
+attributetype ( 1.3.6.1.1.1.1.10 NAME 'shadowExpire'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.11 NAME 'shadowFlag'
+attributetype ( 1.3.6.1.1.1.1.11 NAME 'shadowFlag'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-# TBC: caseIgnoreIA5SubstringsMatch is not defined
-
-attribute ( 1.3.6.1.1.1.1.12 NAME 'memberUid'
+attributetype ( 1.3.6.1.1.1.1.12 NAME 'memberUid'
 	EQUALITY caseExactIA5Match
+	SUBSTR caseExactIA5SubstringsMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
 
-# TBC: caseIgnoreIA5SubstringsMatch is not defined
-
-attribute ( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup'
+attributetype ( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup'
 	EQUALITY caseExactIA5Match
+	SUBSTR caseExactIA5SubstringsMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
 
-attribute ( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple'
+attributetype ( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple'
 	DESC 'Netgroup triple'
 	SYNTAX 1.3.6.1.1.1.0.0 )
 
-attribute ( 1.3.6.1.1.1.1.15 NAME 'ipServicePort'
+attributetype ( 1.3.6.1.1.1.1.15 NAME 'ipServicePort'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol'
+attributetype ( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol'
 	SUP name )
 
-attribute ( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber'
+attributetype ( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber'
+attributetype ( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber'
 	EQUALITY integerMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber'
-	DESC 'IP address as a dotted decimal, eg. 192.168.1.1, omitting leading zeros'
+attributetype ( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber'
+	DESC 'IP address'
 	EQUALITY caseIgnoreIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
 
-attribute ( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber'
-	DESC 'IP network as a dotted decimal, eg. 192.168, omitting leading zeros'
+attributetype ( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber'
+	DESC 'IP network'
 	EQUALITY caseIgnoreIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber'
-	DESC 'IP netmask as a dotted decimal, eg. 255.255.255.0, omitting leading zeros'
+attributetype ( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber'
+	DESC 'IP netmask'
 	EQUALITY caseIgnoreIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} SINGLE-VALUE )
 
-attribute ( 1.3.6.1.1.1.1.22 NAME 'macAddress'
-	DESC 'MAC address in maximal, colon separated hex notation, eg. 00:00:92:90:ee:e2'
+attributetype ( 1.3.6.1.1.1.1.22 NAME 'macAddress'
+	DESC 'MAC address'
 	EQUALITY caseIgnoreIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
 
-attribute ( 1.3.6.1.1.1.1.23 NAME 'bootParameter'
+attributetype ( 1.3.6.1.1.1.1.23 NAME 'bootParameter'
 	DESC 'rpc.bootparamd parameter'
 	SYNTAX 1.3.6.1.1.1.0.1 )
 
-attribute ( 1.3.6.1.1.1.1.24 NAME 'bootFile'
+attributetype ( 1.3.6.1.1.1.1.24 NAME 'bootFile'
 	DESC 'Boot image name'
 	EQUALITY caseExactIA5Match
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
 
-attribute ( 1.3.6.1.1.1.1.26 NAME 'nisMapName'
+attributetype ( 1.3.6.1.1.1.1.26 NAME 'nisMapName'
 	SUP name )
 
-# TBC: caseIgnoreIA5SubstringsMatch is not defined
-
-attribute ( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry'
+attributetype ( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry'
 	EQUALITY caseExactIA5Match
+	SUBSTR caseExactIA5SubstringsMatch
 	SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{1024} SINGLE-VALUE )
 
 # Object Class Definitions
 
-objectclass ( 1.3.6.1.1.1.2.0 NAME 'posixAccount' SUP top AUXILIARY
+objectclass ( 1.3.6.1.1.1.2.0 NAME 'posixAccount'
 	DESC 'Abstraction of an account with POSIX attributes'
+	SUP top AUXILIARY
 	MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory )
 	MAY ( userPassword $ loginShell $ gecos $ description ) )
 
-objectclass ( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' SUP top AUXILIARY
+objectclass ( 1.3.6.1.1.1.2.1 NAME 'shadowAccount'
 	DESC 'Additional attributes for shadow passwords'
+	SUP top AUXILIARY
 	MUST uid
 	MAY ( userPassword $ shadowLastChange $ shadowMin $
 	      shadowMax $ shadowWarning $ shadowInactive $
 	      shadowExpire $ shadowFlag $ description ) )
 
-objectclass ( 1.3.6.1.1.1.2.2 NAME 'posixGroup' SUP top STRUCTURAL
+objectclass ( 1.3.6.1.1.1.2.2 NAME 'posixGroup'
 	DESC 'Abstraction of a group of accounts'
+	SUP top STRUCTURAL
 	MUST ( cn $ gidNumber )
 	MAY ( userPassword $ memberUid $ description ) )
 
-# TBC: quotes in quoted strings
-
-objectclass ( 1.3.6.1.1.1.2.3 NAME 'ipService' SUP top STRUCTURAL
-	DESC 'Abstraction an Internet Protocol service.
-	      Maps an IP port and protocol (such as tcp or udp)
-	      to one or more names; the distinguished value of
-	      the cn attribute denotes the service"s canonical
-	      name'
+objectclass ( 1.3.6.1.1.1.2.3 NAME 'ipService'
+	DESC 'Abstraction an Internet Protocol service'
+	SUP top STRUCTURAL
 	MUST ( cn $ ipServicePort $ ipServiceProtocol )
 	MAY ( description ) )
 
-# TBC: quotes in quoted strings
-
-objectclass ( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' SUP top STRUCTURAL
-	DESC 'Abstraction of an IP protocol. Maps a protocol number
-	      to one or more names. The distinguished value of the cn
-	      attribute denotes the protocol"s canonical name'
+objectclass ( 1.3.6.1.1.1.2.4 NAME 'ipProtocol'
+	DESC 'Abstraction of an IP protocol'
+	SUP top STRUCTURAL
 	MUST ( cn $ ipProtocolNumber $ description )
 	MAY description )
 
-# TBC: quotes in quoted strings
-
-objectclass ( 1.3.6.1.1.1.2.5 NAME 'oncRpc' SUP top STRUCTURAL
-	DESC 'Abstraction of an Open Network Computing (ONC)
-	      [RFC1057] Remote Procedure Call (RPC) binding.
-	      This class maps an ONC RPC number to a name.
-	      The distinguished value of the cn attribute denotes
-	      the RPC service"s canonical name'
+objectclass ( 1.3.6.1.1.1.2.5 NAME 'oncRpc'
+	DESC 'Abstraction of an ONC/RPC binding'
+	SUP top STRUCTURAL
 	MUST ( cn $ oncRpcNumber $ description )
 	MAY description )
 
-# TBC: quotes in quoted strings
-
-objectclass ( 1.3.6.1.1.1.2.6 NAME 'ipHost' SUP top AUXILIARY
-	DESC 'Abstraction of a host, an IP device. The distinguished
-	      value of the cn attribute denotes the host"s canonical
-	      name. Device SHOULD be used as a structural class'
+objectclass ( 1.3.6.1.1.1.2.6 NAME 'ipHost'
+	DESC 'Abstraction of a host, an IP device'
+	SUP top AUXILIARY
 	MUST ( cn $ ipHostNumber )
 	MAY ( l $ description $ manager ) )
 
-# TBC: quotes in quoted strings
-
-objectclass ( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' SUP top STRUCTURAL
-	DESC 'Abstraction of a network. The distinguished value of
-	      the cn attribute denotes the network"s canonical name'
+objectclass ( 1.3.6.1.1.1.2.7 NAME 'ipNetwork'
+	DESC 'Abstraction of an IP network'
+	SUP top STRUCTURAL
 	MUST ( cn $ ipNetworkNumber )
 	MAY ( ipNetmaskNumber $ l $ description $ manager ) )
 
-objectclass ( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' SUP top STRUCTURAL
-	DESC 'Abstraction of a netgroup. May refer to other netgroups'
+objectclass ( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup'
+	DESC 'Abstraction of a netgroup'
+	SUP top STRUCTURAL
 	MUST cn
 	MAY ( nisNetgroupTriple $ memberNisNetgroup $ description ) )
 
-objectclass ( 1.3.6.1.1.1.2.9 NAME 'nisMap' SUP top STRUCTURAL
+objectclass ( 1.3.6.1.1.1.2.9 NAME 'nisMap'
 	DESC 'A generic abstraction of a NIS map'
+	SUP top STRUCTURAL
 	MUST nisMapName
 	MAY description )
 
-objectclass ( 1.3.6.1.1.1.2.10 NAME 'nisObject' SUP top STRUCTURAL
+objectclass ( 1.3.6.1.1.1.2.10 NAME 'nisObject'
 	DESC 'An entry in a NIS map'
+	SUP top STRUCTURAL
 	MUST ( cn $ nisMapEntry $ nisMapName )
 	MAY description )
 
-objectclass ( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' SUP top AUXILIARY
-	DESC 'A device with a MAC address; device SHOULD be
-	      used as a structural class'
+objectclass ( 1.3.6.1.1.1.2.11 NAME 'ieee802Device'
+	DESC 'A device with a MAC address'
+	SUP top AUXILIARY
 	MAY macAddress )
 
-objectclass ( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' SUP top AUXILIARY
-	DESC 'A device with boot parameters; device SHOULD be
-	      used as a structural class'
+objectclass ( 1.3.6.1.1.1.2.12 NAME 'bootableDevice'
+	DESC 'A device with boot parameters'
+	SUP top AUXILIARY
 	MAY ( bootFile $ bootParameter ) )