Hello,
I need to use the schema with OpenLDAP server and apparently OpenLDAP can't
handle the original line ordering.
Pushed to master:
2a65d0b2962bbeec4f769e9724d0d22879e24193 Turn doc/schema into a valid LDIF file.
e86c94b63e62fefef96fbec6377bf43a0e246d84 Add COSINE schema attributes to
doc/schema.
e16a59471c5e9c88d4baee225c38c7dcd8159573 Fix doc/schema ordering to be
compatible with OpenLDAP.
e8444906881f4ba5d707fa2a611f1a8187142d00 Rename doc/schema to doc/schema.ldif.
--
Petr^2 Spacek
From 2a65d0b2962bbeec4f769e9724d0d22879e24193 Mon Sep 17 00:00:00 2001
From: Petr Spacek <pspa...@redhat.com>
Date: Thu, 21 May 2015 09:13:45 +0200
Subject: [PATCH] Turn doc/schema into a valid LDIF file.
Trailing whitespaces are there on purpose to make 389 DS schema parser happy.
---
doc/schema | 676 ++++++++++++++++++++++++++++++-------------------------------
1 file changed, 336 insertions(+), 340 deletions(-)
rewrite doc/schema (86%)
diff --git a/doc/schema b/doc/schema
dissimilarity index 86%
index 5ed9e6f5d6ef11ebcf90e63d5b1e3492b7cc95d1..cf2c24e31929807414233d043ae0005d1f7fdd2c 100644
--- a/doc/schema
+++ b/doc/schema
@@ -1,340 +1,336 @@
-# This schema contains OIDs from Uninett and FreeIPA.
-#
-# Unninet: http://drift.uninett.no/nett/ip-nett/dnsattributes.schema
-# Base OID for DNS records is 1.3.6.1.4.1.2428.20.1,
-# see http://drift.uninett.no/nett/ip-nett/oids.html
-#
-# FreeIPA: http://freeipa.org/
-# Base OID for DNS records is 2.16.840.1.113730.3.8.5
-# Base OID for DNS objectClasses is 2.16.840.1.113730.3.8.6
-#
-# If you want to add some record types that are defined by IANA,
-# please define it similar to what is done for the existing ones. The
-# name should be {TYPE}Record, and OID should be
-# 1.3.6.1.4.1.2428.20.1.value. For instance the RR type LOC has value
-# 29, so attribute name should be LocRecord (casing shouldn't matter),
-# and the OID is 1.3.6.1.4.1.2428.20.1.29. If you follow this, you
-# know that it will be compatible with what others use, and one is
-# guaranteed that the OIDs are unique.
-# The IANA DNS record type values are available from
-# <URL: http://www.iana.org/assignments/dns-parameters >.
-#
-# If you define new attributes, please report them to dr...@uninett.no
-# to get them added of this schema.
-#
-# The basic record types like A, CNAME etc are defined in the cosine
-# schema and not in this schema. This means that your LDAP server
-# must use both the cosine schema and this one to get all the DNS
-# attributes defined.
-
-attributetype ( 1.3.6.1.4.1.2428.20.0.0
- NAME 'dNSTTL'
- DESC 'An integer denoting time to live'
- EQUALITY integerMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.0.1
- NAME 'dNSClass'
- DESC 'The class of a resource record'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.12
- NAME 'pTRRecord'
- DESC 'domain name pointer, RFC 1035'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.13
- NAME 'hInfoRecord'
- DESC 'host information, RFC 1035'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.14
- NAME 'mInfoRecord'
- DESC 'mailbox or mail list information, RFC 1035'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.16
- NAME 'tXTRecord'
- DESC 'text string, RFC 1035'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.18
- NAME 'aFSDBRecord'
- DESC 'for AFS Data Base location, RFC 1183'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.28
- NAME 'aAAARecord'
- DESC 'IPv6 address, RFC 1886'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.29
- NAME 'LocRecord'
- DESC 'Location, RFC 1876'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.30
- NAME 'nXTRecord'
- DESC 'non-existant, RFC 2535'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.33
- NAME 'sRVRecord'
- DESC 'service location, RFC 2782'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.35
- NAME 'nAPTRRecord'
- DESC 'Naming Authority Pointer, RFC 2915'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.36
- NAME 'kXRecord'
- DESC 'Key Exchange Delegation, RFC 2230'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.37
- NAME 'certRecord'
- DESC 'certificate, RFC 2538'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.38
- NAME 'a6Record'
- DESC 'A6 Record Type, RFC 2874'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.39
- NAME 'dNameRecord'
- DESC 'Non-Terminal DNS Name Redirection, RFC 6672'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.43
- NAME 'dSRecord'
- DESC 'Delegation Signer, RFC 3658'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.44
- NAME 'sSHFPRecord'
- DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.51
- NAME 'nSEC3PARAMRecord'
- DESC 'RFC 5155'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord'
- DESC 'DNS-Based Authentication of Named Entities - Transport Layer Security Protocol, RFC 6698'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.32769
- NAME 'DLVRecord'
- DESC 'RFC 4431: DNSSEC Lookaside Validation'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 2.16.840.1.113730.3.8.5.0
- NAME 'idnsName'
- DESC 'DNS FQDN'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.1
- NAME 'idnsAllowDynUpdate'
- DESC 'permit dynamic updates on this zone'
- EQUALITY booleanMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.2
- NAME 'idnsZoneActive'
- DESC 'define if the zone is considered in use'
- EQUALITY booleanMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.3
- NAME 'idnsSOAmName'
- DESC 'SOA Name'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.4
- NAME 'idnsSOArName'
- DESC 'SOA root Name'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.5
- NAME 'idnsSOAserial'
- DESC 'SOA serial number'
- EQUALITY numericStringMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.6
- NAME 'idnsSOArefresh'
- DESC 'SOA refresh value'
- EQUALITY numericStringMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.7
- NAME 'idnsSOAretry'
- DESC 'SOA retry value'
- EQUALITY numericStringMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.8
- NAME 'idnsSOAexpire'
- DESC 'SOA expire value'
- EQUALITY numericStringMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.9
- NAME 'idnsSOAminimum'
- DESC 'SOA minimum value'
- EQUALITY numericStringMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.10
- NAME 'idnsUpdatePolicy'
- DESC 'DNS dynamic updates policy'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.11
- NAME 'idnsAllowQuery'
- DESC 'BIND9 allow-query ACL element'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.12
- NAME 'idnsAllowTransfer'
- DESC 'BIND9 allow-transfer ACL element'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.13
- NAME 'idnsAllowSyncPTR'
- DESC 'permit synchronization of PTR records'
- EQUALITY booleanMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.14
- NAME 'idnsForwardPolicy'
- DESC 'forward policy: only or first'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113730.3.8.5.15
- NAME 'idnsForwarders'
- DESC 'list of forwarders'
- EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26)
-
-attributetype ( 2.16.840.1.113730.3.8.5.18
- NAME 'idnsSecInlineSigning'
- DESC 'DNSSEC in-line signing'
- EQUALITY booleanMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
-
-objectclass ( 2.16.840.1.113730.3.8.6.0
- NAME 'idnsRecord'
- DESC 'dns Record, usually a host'
- SUP top
- STRUCTURAL
- MUST idnsName
- MAY ( cn $ idnsAllowDynUpdate $ DNSTTL $ DNSClass $ ARecord $
- AAAARecord $ A6Record $ NSRecord $ CNAMERecord $ PTRRecord $
- SRVRecord $ TXTRecord $ MXRecord $ MDRecord $ HINFORecord $
- MINFORecord $ AFSDBRecord $ LOCRecord $
- NXTRecord $ NAPTRRecord $ KXRecord $ CERTRecord $ DNAMERecord $
- DSRecord $ SSHFPRecord $ DLVRecord $ TLSARecord
- ) )
-
-objectclass ( 2.16.840.1.113730.3.8.6.1
- NAME 'idnsZone'
- DESC 'Zone class'
- SUP idnsRecord
- STRUCTURAL
- MUST ( idnsName $ idnsZoneActive $ idnsSOAmName $ idnsSOArName $
- idnsSOAserial $ idnsSOArefresh $ idnsSOAretry $ idnsSOAexpire $
- idnsSOAminimum
- )
- MAY ( idnsUpdatePolicy $ idnsAllowQuery $ idnsAllowTransfer $
- idnsAllowSyncPTR $ idnsForwardPolicy $ idnsForwarders $
- idnsSecInlineSigning $ nSEC3PARAMRecord
- ) )
-
-objectclass ( 2.16.840.1.113730.3.8.6.2
- NAME 'idnsConfigObject'
- DESC 'DNS global config options'
- STRUCTURAL
- MAY ( idnsForwardPolicy $ idnsForwarders $ idnsAllowSyncPTR ) )
-
-objectClass ( 2.16.840.1.113730.3.8.6.3
- NAME 'idnsForwardZone'
- DESC 'Forward Zone class'
- SUP top
- STRUCTURAL
- MUST ( idnsName $ idnsZoneActive )
- MAY ( idnsForwarders $ idnsForwardPolicy ) )
+# This schema contains OIDs from Uninett and FreeIPA.
+#
+# Unninet: http://drift.uninett.no/nett/ip-nett/dnsattributes.schema
+# Base OID for DNS records is 1.3.6.1.4.1.2428.20.1,
+# see http://drift.uninett.no/nett/ip-nett/oids.html
+#
+# FreeIPA: http://freeipa.org/
+# Base OID for DNS records is 2.16.840.1.113730.3.8.5
+# Base OID for DNS objectClasses is 2.16.840.1.113730.3.8.6
+#
+# If you want to add some record types that are defined by IANA,
+# please define it similar to what is done for the existing ones. The
+# name should be {TYPE}Record, and OID should be
+# 1.3.6.1.4.1.2428.20.1.value. For instance the RR type LOC has value
+# 29, so attribute name should be LocRecord (casing shouldn't matter),
+# and the OID is 1.3.6.1.4.1.2428.20.1.29. If you follow this, you
+# know that it will be compatible with what others use, and one is
+# guaranteed that the OIDs are unique.
+# The IANA DNS record type values are available from
+# <URL: http://www.iana.org/assignments/dns-parameters >.
+#
+# If you define new attributes, please report them to dr...@uninett.no
+# to get them added of this schema.
+#
+# The basic record types like A, CNAME etc are defined in the cosine
+# schema and not in this schema. This means that your LDAP server
+# must use both the cosine schema and this one to get all the DNS
+# attributes defined.
+#
+dn: cn=schema
+# dnsClass attribute is in fact unsupported by bind-dyndb-ldap
+attributetypes: ( 1.3.6.1.4.1.2428.20.0.1
+ NAME 'dNSClass'
+ DESC 'The class of a resource record'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.12
+ NAME 'pTRRecord'
+ DESC 'domain name pointer, RFC 1035'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.13
+ NAME 'hInfoRecord'
+ DESC 'host information, RFC 1035'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.14
+ NAME 'mInfoRecord'
+ DESC 'mailbox or mail list information, RFC 1035'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.16
+ NAME 'tXTRecord'
+ DESC 'text string, RFC 1035'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.18
+ NAME 'aFSDBRecord'
+ DESC 'for AFS Data Base location, RFC 1183'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.28
+ NAME 'aAAARecord'
+ DESC 'IPv6 address, RFC 1886'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.29
+ NAME 'LocRecord'
+ DESC 'Location, RFC 1876'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.30
+ NAME 'nXTRecord'
+ DESC 'non-existant, RFC 2535'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.33
+ NAME 'sRVRecord'
+ DESC 'service location, RFC 2782'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.35
+ NAME 'nAPTRRecord'
+ DESC 'Naming Authority Pointer, RFC 2915'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.36
+ NAME 'kXRecord'
+ DESC 'Key Exchange Delegation, RFC 2230'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.37
+ NAME 'certRecord'
+ DESC 'certificate, RFC 2538'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.38
+ NAME 'a6Record'
+ DESC 'A6 Record Type, RFC 2874'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.39
+ NAME 'dNameRecord'
+ DESC 'Non-Terminal DNS Name Redirection, RFC 6672'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.43
+ NAME 'dSRecord'
+ DESC 'Delegation Signer, RFC 3658'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.44
+ NAME 'sSHFPRecord'
+ DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.51
+ NAME 'nSEC3PARAMRecord'
+ DESC 'RFC 5155'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord'
+ DESC 'DNS-Based Authentication of Named Entities - Transport Layer Security Protocol, RFC 6698'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.1.32769
+ NAME 'DLVRecord'
+ DESC 'RFC 4431: DNSSEC Lookaside Validation'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.0
+ NAME 'idnsName'
+ DESC 'DNS FQDN'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.1
+ NAME 'idnsAllowDynUpdate'
+ DESC 'permit dynamic updates on this zone'
+ EQUALITY booleanMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.2
+ NAME 'idnsZoneActive'
+ DESC 'define if the zone is considered in use'
+ EQUALITY booleanMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.3
+ NAME 'idnsSOAmName'
+ DESC 'SOA Name'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.4
+ NAME 'idnsSOArName'
+ DESC 'SOA root Name'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.5
+ NAME 'idnsSOAserial'
+ DESC 'SOA serial number'
+ EQUALITY numericStringMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.6
+ NAME 'idnsSOArefresh'
+ DESC 'SOA refresh value'
+ EQUALITY numericStringMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.7
+ NAME 'idnsSOAretry'
+ DESC 'SOA retry value'
+ EQUALITY numericStringMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.8
+ NAME 'idnsSOAexpire'
+ DESC 'SOA expire value'
+ EQUALITY numericStringMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.9
+ NAME 'idnsSOAminimum'
+ DESC 'SOA minimum value'
+ EQUALITY numericStringMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.10
+ NAME 'idnsUpdatePolicy'
+ DESC 'DNS dynamic updates policy'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.11
+ NAME 'idnsAllowQuery'
+ DESC 'BIND9 allow-query ACL element'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.12
+ NAME 'idnsAllowTransfer'
+ DESC 'BIND9 allow-transfer ACL element'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.13
+ NAME 'idnsAllowSyncPTR'
+ DESC 'permit synchronization of PTR records'
+ EQUALITY booleanMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.14
+ NAME 'idnsForwardPolicy'
+ DESC 'forward policy: only or first'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.15
+ NAME 'idnsForwarders'
+ DESC 'list of forwarders'
+ EQUALITY caseIgnoreIA5Match
+ SUBSTR caseIgnoreIA5SubstringsMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributetypes: ( 2.16.840.1.113730.3.8.5.18
+ NAME 'idnsSecInlineSigning'
+ DESC 'DNSSEC in-line signing'
+ EQUALITY booleanMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
+ SINGLE-VALUE )
+#
+objectClasses: ( 2.16.840.1.113730.3.8.6.0
+ NAME 'idnsRecord'
+ DESC 'dns Record, usually a host'
+ SUP top
+ STRUCTURAL
+ MUST idnsName
+ MAY ( cn $ idnsAllowDynUpdate $ DNSTTL $ DNSClass $ ARecord $
+ AAAARecord $ A6Record $ NSRecord $ CNAMERecord $ PTRRecord $
+ SRVRecord $ TXTRecord $ MXRecord $ MDRecord $ HINFORecord $
+ MINFORecord $ AFSDBRecord $ LOCRecord $
+ NXTRecord $ NAPTRRecord $ KXRecord $ CERTRecord $ DNAMERecord $
+ DSRecord $ SSHFPRecord $ DLVRecord $ TLSARecord
+ ) )
+#
+objectClasses: ( 2.16.840.1.113730.3.8.6.1
+ NAME 'idnsZone'
+ DESC 'Zone class'
+ SUP idnsRecord
+ STRUCTURAL
+ MUST ( idnsName $ idnsZoneActive $ idnsSOAmName $ idnsSOArName $
+ idnsSOAserial $ idnsSOArefresh $ idnsSOAretry $ idnsSOAexpire $
+ idnsSOAminimum
+ )
+ MAY ( idnsUpdatePolicy $ idnsAllowQuery $ idnsAllowTransfer $
+ idnsAllowSyncPTR $ idnsForwardPolicy $ idnsForwarders $
+ idnsSecInlineSigning $ nSEC3PARAMRecord
+ ) )
+#
+objectClasses: ( 2.16.840.1.113730.3.8.6.2
+ NAME 'idnsConfigObject'
+ DESC 'DNS global config options'
+ STRUCTURAL
+ MAY ( idnsForwardPolicy $ idnsForwarders $ idnsAllowSyncPTR ) )
+#
+objectClasses: ( 2.16.840.1.113730.3.8.6.3
+ NAME 'idnsForwardZone'
+ DESC 'Forward Zone class'
+ SUP top
+ STRUCTURAL
+ MUST ( idnsName $ idnsZoneActive )
+ MAY ( idnsForwarders $ idnsForwardPolicy ) )
--
2.1.0
From e86c94b63e62fefef96fbec6377bf43a0e246d84 Mon Sep 17 00:00:00 2001
From: Petr Spacek <pspa...@redhat.com>
Date: Thu, 21 May 2015 09:21:53 +0200
Subject: [PATCH] Add COSINE schema attributes to doc/schema.
This allows us to use the schema file directly with FreeIPA which does
not include COSINE schema.
---
doc/schema | 46 +++++++++++++++++++++++++++++++++++++++++++---
1 file changed, 43 insertions(+), 3 deletions(-)
diff --git a/doc/schema b/doc/schema
index cf2c24e31929807414233d043ae0005d1f7fdd2c..2c03062e69f80bab64c0ff8c4db5fd2b915a8358 100644
--- a/doc/schema
+++ b/doc/schema
@@ -23,11 +23,51 @@
# to get them added of this schema.
#
# The basic record types like A, CNAME etc are defined in the cosine
-# schema and not in this schema. This means that your LDAP server
-# must use both the cosine schema and this one to get all the DNS
-# attributes defined.
+# schema and not by UNINETT or FreeIPA. This means that your LDAP server
+# should use the old COSINE schema (RFC 1274) plus this one to get
+# all the DNS attributes defined.
+#
+# Alternativelly you can use included excerpt from COSINE schema to get all
+# the missing attributes.
#
dn: cn=schema
+# COSINE schema
+# comment out if your server has COSINE schema installed
+attributeTypes: ( 0.9.2342.19200300.100.1.26
+ NAME 'aRecord'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributeTypes: ( 0.9.2342.19200300.100.1.27
+ NAME 'mDRecord'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributeTypes: ( 0.9.2342.19200300.100.1.28
+ NAME 'mXRecord'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+#
+attributeTypes: ( 0.9.2342.19200300.100.1.29
+ NAME 'nSRecord'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+# CNAME record was originally defined as multi-value
+# but we redefined it as single-value to conform with RFC 2136, section 1.1.5.
+attributeTypes: ( 0.9.2342.19200300.100.1.31
+ NAME 'cNAMERecord'
+ EQUALITY caseIgnoreIA5Match
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ SINGLE-VALUE )
+#
+attributetypes: ( 1.3.6.1.4.1.2428.20.0.0
+ NAME 'dNSTTL'
+ DESC 'An integer denoting time to live'
+ EQUALITY integerMatch
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
+#
+#
+# UNINETT and FreeIPA attributes
# dnsClass attribute is in fact unsupported by bind-dyndb-ldap
attributetypes: ( 1.3.6.1.4.1.2428.20.0.1
NAME 'dNSClass'
--
2.1.0
From e16a59471c5e9c88d4baee225c38c7dcd8159573 Mon Sep 17 00:00:00 2001
From: Petr Spacek <pspa...@redhat.com>
Date: Thu, 21 May 2015 12:08:44 +0200
Subject: [PATCH] Fix doc/schema ordering to be compatible with OpenLDAP.
---
doc/schema | 242 ++++++++++++++++++++++++++++++++-----------------------------
1 file changed, 126 insertions(+), 116 deletions(-)
diff --git a/doc/schema b/doc/schema
index 2c03062e69f80bab64c0ff8c4db5fd2b915a8358..872d505348e94e946d676b1178690f18cf2c8bac 100644
--- a/doc/schema
+++ b/doc/schema
@@ -30,307 +30,317 @@
# Alternativelly you can use included excerpt from COSINE schema to get all
# the missing attributes.
#
+#
+# 389 DS requires following DN
dn: cn=schema
+#
+# OpenLDAP 2.4 requires following DN + objectClass + different attribute names
+# s/^attributeTypes:/olcAttributeTypes:/
+# s/^objectClasses:/olcObjectClasses:/
+#dn: cn=dns,cn=schema,cn=config
+#objectClass: olcSchemaConfig
+#
+#
# COSINE schema
# comment out if your server has COSINE schema installed
attributeTypes: ( 0.9.2342.19200300.100.1.26
NAME 'aRecord'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match )
#
attributeTypes: ( 0.9.2342.19200300.100.1.27
NAME 'mDRecord'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match )
#
attributeTypes: ( 0.9.2342.19200300.100.1.28
NAME 'mXRecord'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match )
#
attributeTypes: ( 0.9.2342.19200300.100.1.29
NAME 'nSRecord'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match )
# CNAME record was originally defined as multi-value
# but we redefined it as single-value to conform with RFC 2136, section 1.1.5.
attributeTypes: ( 0.9.2342.19200300.100.1.31
NAME 'cNAMERecord'
- EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match
SINGLE-VALUE )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.0.0
+attributeTypes: ( 1.3.6.1.4.1.2428.20.0.0
NAME 'dNSTTL'
DESC 'An integer denoting time to live'
- EQUALITY integerMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
+ EQUALITY integerMatch )
#
#
# UNINETT and FreeIPA attributes
# dnsClass attribute is in fact unsupported by bind-dyndb-ldap
-attributetypes: ( 1.3.6.1.4.1.2428.20.0.1
+attributeTypes: ( 1.3.6.1.4.1.2428.20.0.1
NAME 'dNSClass'
DESC 'The class of a resource record'
- EQUALITY caseIgnoreIA5Match
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.12
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.12
NAME 'pTRRecord'
DESC 'domain name pointer, RFC 1035'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.13
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.13
NAME 'hInfoRecord'
DESC 'host information, RFC 1035'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.14
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.14
NAME 'mInfoRecord'
DESC 'mailbox or mail list information, RFC 1035'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.16
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.16
NAME 'tXTRecord'
DESC 'text string, RFC 1035'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.18
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.18
NAME 'aFSDBRecord'
DESC 'for AFS Data Base location, RFC 1183'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.28
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.28
NAME 'aAAARecord'
DESC 'IPv6 address, RFC 1886'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.29
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.29
NAME 'LocRecord'
DESC 'Location, RFC 1876'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.30
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.30
NAME 'nXTRecord'
DESC 'non-existant, RFC 2535'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.33
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.33
NAME 'sRVRecord'
DESC 'service location, RFC 2782'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.35
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.35
NAME 'nAPTRRecord'
DESC 'Naming Authority Pointer, RFC 2915'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.36
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.36
NAME 'kXRecord'
DESC 'Key Exchange Delegation, RFC 2230'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.37
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.37
NAME 'certRecord'
DESC 'certificate, RFC 2538'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.38
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.38
NAME 'a6Record'
DESC 'A6 Record Type, RFC 2874'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.39
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.39
NAME 'dNameRecord'
DESC 'Non-Terminal DNS Name Redirection, RFC 6672'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
+ SINGLE-VALUE )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.43
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.43
NAME 'dSRecord'
DESC 'Delegation Signer, RFC 3658'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.44
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.44
NAME 'sSHFPRecord'
DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.51
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.51
NAME 'nSEC3PARAMRecord'
DESC 'RFC 5155'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord'
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord'
DESC 'DNS-Based Authentication of Named Entities - Transport Layer Security Protocol, RFC 6698'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 1.3.6.1.4.1.2428.20.1.32769
+attributeTypes: ( 1.3.6.1.4.1.2428.20.1.32769
NAME 'DLVRecord'
DESC 'RFC 4431: DNSSEC Lookaside Validation'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.0
+attributeTypes: ( 2.16.840.1.113730.3.8.5.0
NAME 'idnsName'
DESC 'DNS FQDN'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.1
+attributeTypes: ( 2.16.840.1.113730.3.8.5.1
NAME 'idnsAllowDynUpdate'
DESC 'permit dynamic updates on this zone'
- EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
+ EQUALITY booleanMatch
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.2
+attributeTypes: ( 2.16.840.1.113730.3.8.5.2
NAME 'idnsZoneActive'
DESC 'define if the zone is considered in use'
- EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
+ EQUALITY booleanMatch
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.3
+attributeTypes: ( 2.16.840.1.113730.3.8.5.3
NAME 'idnsSOAmName'
DESC 'SOA Name'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.4
+attributeTypes: ( 2.16.840.1.113730.3.8.5.4
NAME 'idnsSOArName'
DESC 'SOA root Name'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.5
+attributeTypes: ( 2.16.840.1.113730.3.8.5.5
NAME 'idnsSOAserial'
DESC 'SOA serial number'
- EQUALITY numericStringMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ EQUALITY numericStringMatch
SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.6
+attributeTypes: ( 2.16.840.1.113730.3.8.5.6
NAME 'idnsSOArefresh'
DESC 'SOA refresh value'
- EQUALITY numericStringMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ EQUALITY numericStringMatch
SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.7
+attributeTypes: ( 2.16.840.1.113730.3.8.5.7
NAME 'idnsSOAretry'
DESC 'SOA retry value'
- EQUALITY numericStringMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
+ EQUALITY numericStringMatch
SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.8
+attributeTypes: ( 2.16.840.1.113730.3.8.5.8
NAME 'idnsSOAexpire'
DESC 'SOA expire value'
- EQUALITY numericStringMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
+ EQUALITY numericStringMatch
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.9
+attributeTypes: ( 2.16.840.1.113730.3.8.5.9
NAME 'idnsSOAminimum'
DESC 'SOA minimum value'
- EQUALITY numericStringMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.36
- SINGLE-VALUE )
+ EQUALITY numericStringMatch
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.10
+attributeTypes: ( 2.16.840.1.113730.3.8.5.10
NAME 'idnsUpdatePolicy'
DESC 'DNS dynamic updates policy'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.11
+attributeTypes: ( 2.16.840.1.113730.3.8.5.11
NAME 'idnsAllowQuery'
DESC 'BIND9 allow-query ACL element'
- EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+ EQUALITY caseIgnoreIA5Match
SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.12
+attributeTypes: ( 2.16.840.1.113730.3.8.5.12
NAME 'idnsAllowTransfer'
DESC 'BIND9 allow-transfer ACL element'
- EQUALITY caseIgnoreIA5Match
SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
- SINGLE-VALUE )
+ EQUALITY caseIgnoreIA5Match
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.13
+attributeTypes: ( 2.16.840.1.113730.3.8.5.13
NAME 'idnsAllowSyncPTR'
DESC 'permit synchronization of PTR records'
- EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
- SINGLE-VALUE )
+ EQUALITY booleanMatch
+ SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.14
+attributeTypes: ( 2.16.840.1.113730.3.8.5.14
NAME 'idnsForwardPolicy'
DESC 'forward policy: only or first'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
SINGLE-VALUE )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.15
+attributeTypes: ( 2.16.840.1.113730.3.8.5.15
NAME 'idnsForwarders'
DESC 'list of forwarders'
+ SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
EQUALITY caseIgnoreIA5Match
- SUBSTR caseIgnoreIA5SubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
+ SUBSTR caseIgnoreIA5SubstringsMatch )
#
-attributetypes: ( 2.16.840.1.113730.3.8.5.18
+attributeTypes: ( 2.16.840.1.113730.3.8.5.18
NAME 'idnsSecInlineSigning'
DESC 'DNSSEC in-line signing'
- EQUALITY booleanMatch
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
+ EQUALITY booleanMatch
SINGLE-VALUE )
#
objectClasses: ( 2.16.840.1.113730.3.8.6.0
--
2.1.0
From e8444906881f4ba5d707fa2a611f1a8187142d00 Mon Sep 17 00:00:00 2001
From: Petr Spacek <pspa...@redhat.com>
Date: Thu, 21 May 2015 12:14:56 +0200
Subject: [PATCH] Rename doc/schema to doc/schema.ldif.
---
doc/Makefile.am | 2 +-
doc/{schema => schema.ldif} | 0
2 files changed, 1 insertion(+), 1 deletion(-)
rename doc/{schema => schema.ldif} (100%)
diff --git a/doc/Makefile.am b/doc/Makefile.am
index 83ef23320962ede0e1a338cef41f77ebf704f86a..8a06902b7a81f2c41b06b44fdfecb8ba81948365 100644
--- a/doc/Makefile.am
+++ b/doc/Makefile.am
@@ -1 +1 @@
-dist_doc_DATA = example.ldif schema
+dist_doc_DATA = example.ldif schema.ldif
diff --git a/doc/schema b/doc/schema.ldif
similarity index 100%
rename from doc/schema
rename to doc/schema.ldif
--
2.1.0
--
Manage your subscription for the Freeipa-devel mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-devel
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code
