Issue #2071 has been reported by ivdmeer. ---------------------------------------- Bug #2071: puppet ldap schema change suggestion http://projects.reductivelabs.com/issues/2071
Author: ivdmeer Status: Unreviewed Priority: Normal Assigned to: Category: LDAP Target version: Complexity: Easy Affected version: 0.24.7 Keywords: LDAP, parentnode Puppetmasterd with ldap support generates ldap error when a node has multiple parentnodes defined. According to the language tutorial http://reductivelabs.com/trac/puppet/wiki/LanguageTutorial puppet Classes support a simple form of inheritance that allows subclasses to override resources defined in parent classes. Only one class can be inherited by a class. With the current puppet.schema it is possible to add multiple parentnodes to a single ldap entry which result in ldap errors. I would like to suggest a little change to the puppet.schema which introduces a single-value constraint for parentnode attr. This way the ldap server would deny adding multiple parentnodes to a single ldap node or template node. This change has been tested at openldap-server-2.3.43 on FreeBSD. Let me know what you think about this? Kind regards, Ivo van der Meer private cvs diff: --- puppet.schema 12 Mar 2009 09:36:29 -0000 1.1 +++ puppet.schema 12 Mar 2009 09:39:21 -0000 1.2 @@ -1,6 +1,6 @@ # These OIDs are all fake. No guarantees there won't be conflicts. # -# $Id: puppet.schema,v 1.1 2009/03/12 09:36:29 ivdmeer Exp $ +# $Id: puppet.schema,v 1.2 2009/03/12 09:39:21 ivdmeer Exp $ attributetype ( 1.1.3.10 NAME 'puppetclass' DESC 'Puppet Node Class' @@ -10,7 +10,8 @@ attributetype ( 1.1.3.9 NAME 'parentnode' DESC 'Puppet Parent Node' EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) attributetype ( 1.1.3.11 NAME 'environment' DESC 'Puppet Node Environment' ---------------------------------------- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://reductivelabs.com/redmine/my/account --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en -~----------~----~----~----~------~----~------~--~---
