Hello, I need to use the schema with OpenLDAP server and apparently OpenLDAP can't handle the original line ordering.
Pushed to master: 2a65d0b2962bbeec4f769e9724d0d22879e24193 Turn doc/schema into a valid LDIF file. e86c94b63e62fefef96fbec6377bf43a0e246d84 Add COSINE schema attributes to doc/schema. e16a59471c5e9c88d4baee225c38c7dcd8159573 Fix doc/schema ordering to be compatible with OpenLDAP. e8444906881f4ba5d707fa2a611f1a8187142d00 Rename doc/schema to doc/schema.ldif. -- Petr^2 Spacek
From 2a65d0b2962bbeec4f769e9724d0d22879e24193 Mon Sep 17 00:00:00 2001 From: Petr Spacek <pspa...@redhat.com> Date: Thu, 21 May 2015 09:13:45 +0200 Subject: [PATCH] Turn doc/schema into a valid LDIF file. Trailing whitespaces are there on purpose to make 389 DS schema parser happy. --- doc/schema | 676 ++++++++++++++++++++++++++++++------------------------------- 1 file changed, 336 insertions(+), 340 deletions(-) rewrite doc/schema (86%) diff --git a/doc/schema b/doc/schema dissimilarity index 86% index 5ed9e6f5d6ef11ebcf90e63d5b1e3492b7cc95d1..cf2c24e31929807414233d043ae0005d1f7fdd2c 100644 --- a/doc/schema +++ b/doc/schema @@ -1,340 +1,336 @@ -# This schema contains OIDs from Uninett and FreeIPA. -# -# Unninet: http://drift.uninett.no/nett/ip-nett/dnsattributes.schema -# Base OID for DNS records is 1.3.6.1.4.1.2428.20.1, -# see http://drift.uninett.no/nett/ip-nett/oids.html -# -# FreeIPA: http://freeipa.org/ -# Base OID for DNS records is 2.16.840.1.113730.3.8.5 -# Base OID for DNS objectClasses is 2.16.840.1.113730.3.8.6 -# -# If you want to add some record types that are defined by IANA, -# please define it similar to what is done for the existing ones. The -# name should be {TYPE}Record, and OID should be -# 1.3.6.1.4.1.2428.20.1.value. For instance the RR type LOC has value -# 29, so attribute name should be LocRecord (casing shouldn't matter), -# and the OID is 1.3.6.1.4.1.2428.20.1.29. If you follow this, you -# know that it will be compatible with what others use, and one is -# guaranteed that the OIDs are unique. -# The IANA DNS record type values are available from -# <URL: http://www.iana.org/assignments/dns-parameters >. -# -# If you define new attributes, please report them to dr...@uninett.no -# to get them added of this schema. -# -# The basic record types like A, CNAME etc are defined in the cosine -# schema and not in this schema. This means that your LDAP server -# must use both the cosine schema and this one to get all the DNS -# attributes defined. - -attributetype ( 1.3.6.1.4.1.2428.20.0.0 - NAME 'dNSTTL' - DESC 'An integer denoting time to live' - EQUALITY integerMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 ) - -attributetype ( 1.3.6.1.4.1.2428.20.0.1 - NAME 'dNSClass' - DESC 'The class of a resource record' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.12 - NAME 'pTRRecord' - DESC 'domain name pointer, RFC 1035' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.13 - NAME 'hInfoRecord' - DESC 'host information, RFC 1035' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.14 - NAME 'mInfoRecord' - DESC 'mailbox or mail list information, RFC 1035' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.16 - NAME 'tXTRecord' - DESC 'text string, RFC 1035' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.18 - NAME 'aFSDBRecord' - DESC 'for AFS Data Base location, RFC 1183' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.28 - NAME 'aAAARecord' - DESC 'IPv6 address, RFC 1886' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.29 - NAME 'LocRecord' - DESC 'Location, RFC 1876' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.30 - NAME 'nXTRecord' - DESC 'non-existant, RFC 2535' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.33 - NAME 'sRVRecord' - DESC 'service location, RFC 2782' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.35 - NAME 'nAPTRRecord' - DESC 'Naming Authority Pointer, RFC 2915' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.36 - NAME 'kXRecord' - DESC 'Key Exchange Delegation, RFC 2230' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.37 - NAME 'certRecord' - DESC 'certificate, RFC 2538' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.38 - NAME 'a6Record' - DESC 'A6 Record Type, RFC 2874' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.39 - NAME 'dNameRecord' - DESC 'Non-Terminal DNS Name Redirection, RFC 6672' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.43 - NAME 'dSRecord' - DESC 'Delegation Signer, RFC 3658' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.44 - NAME 'sSHFPRecord' - DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.51 - NAME 'nSEC3PARAMRecord' - DESC 'RFC 5155' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord' - DESC 'DNS-Based Authentication of Named Entities - Transport Layer Security Protocol, RFC 6698' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 1.3.6.1.4.1.2428.20.1.32769 - NAME 'DLVRecord' - DESC 'RFC 4431: DNSSEC Lookaside Validation' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) - -attributetype ( 2.16.840.1.113730.3.8.5.0 - NAME 'idnsName' - DESC 'DNS FQDN' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.1 - NAME 'idnsAllowDynUpdate' - DESC 'permit dynamic updates on this zone' - EQUALITY booleanMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.2 - NAME 'idnsZoneActive' - DESC 'define if the zone is considered in use' - EQUALITY booleanMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.3 - NAME 'idnsSOAmName' - DESC 'SOA Name' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.4 - NAME 'idnsSOArName' - DESC 'SOA root Name' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.5 - NAME 'idnsSOAserial' - DESC 'SOA serial number' - EQUALITY numericStringMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.6 - NAME 'idnsSOArefresh' - DESC 'SOA refresh value' - EQUALITY numericStringMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.7 - NAME 'idnsSOAretry' - DESC 'SOA retry value' - EQUALITY numericStringMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.8 - NAME 'idnsSOAexpire' - DESC 'SOA expire value' - EQUALITY numericStringMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.9 - NAME 'idnsSOAminimum' - DESC 'SOA minimum value' - EQUALITY numericStringMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.10 - NAME 'idnsUpdatePolicy' - DESC 'DNS dynamic updates policy' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.11 - NAME 'idnsAllowQuery' - DESC 'BIND9 allow-query ACL element' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.12 - NAME 'idnsAllowTransfer' - DESC 'BIND9 allow-transfer ACL element' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.13 - NAME 'idnsAllowSyncPTR' - DESC 'permit synchronization of PTR records' - EQUALITY booleanMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.14 - NAME 'idnsForwardPolicy' - DESC 'forward policy: only or first' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) - -attributetype ( 2.16.840.1.113730.3.8.5.15 - NAME 'idnsForwarders' - DESC 'list of forwarders' - EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26) - -attributetype ( 2.16.840.1.113730.3.8.5.18 - NAME 'idnsSecInlineSigning' - DESC 'DNSSEC in-line signing' - EQUALITY booleanMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) - -objectclass ( 2.16.840.1.113730.3.8.6.0 - NAME 'idnsRecord' - DESC 'dns Record, usually a host' - SUP top - STRUCTURAL - MUST idnsName - MAY ( cn $ idnsAllowDynUpdate $ DNSTTL $ DNSClass $ ARecord $ - AAAARecord $ A6Record $ NSRecord $ CNAMERecord $ PTRRecord $ - SRVRecord $ TXTRecord $ MXRecord $ MDRecord $ HINFORecord $ - MINFORecord $ AFSDBRecord $ LOCRecord $ - NXTRecord $ NAPTRRecord $ KXRecord $ CERTRecord $ DNAMERecord $ - DSRecord $ SSHFPRecord $ DLVRecord $ TLSARecord - ) ) - -objectclass ( 2.16.840.1.113730.3.8.6.1 - NAME 'idnsZone' - DESC 'Zone class' - SUP idnsRecord - STRUCTURAL - MUST ( idnsName $ idnsZoneActive $ idnsSOAmName $ idnsSOArName $ - idnsSOAserial $ idnsSOArefresh $ idnsSOAretry $ idnsSOAexpire $ - idnsSOAminimum - ) - MAY ( idnsUpdatePolicy $ idnsAllowQuery $ idnsAllowTransfer $ - idnsAllowSyncPTR $ idnsForwardPolicy $ idnsForwarders $ - idnsSecInlineSigning $ nSEC3PARAMRecord - ) ) - -objectclass ( 2.16.840.1.113730.3.8.6.2 - NAME 'idnsConfigObject' - DESC 'DNS global config options' - STRUCTURAL - MAY ( idnsForwardPolicy $ idnsForwarders $ idnsAllowSyncPTR ) ) - -objectClass ( 2.16.840.1.113730.3.8.6.3 - NAME 'idnsForwardZone' - DESC 'Forward Zone class' - SUP top - STRUCTURAL - MUST ( idnsName $ idnsZoneActive ) - MAY ( idnsForwarders $ idnsForwardPolicy ) ) +# This schema contains OIDs from Uninett and FreeIPA. +# +# Unninet: http://drift.uninett.no/nett/ip-nett/dnsattributes.schema +# Base OID for DNS records is 1.3.6.1.4.1.2428.20.1, +# see http://drift.uninett.no/nett/ip-nett/oids.html +# +# FreeIPA: http://freeipa.org/ +# Base OID for DNS records is 2.16.840.1.113730.3.8.5 +# Base OID for DNS objectClasses is 2.16.840.1.113730.3.8.6 +# +# If you want to add some record types that are defined by IANA, +# please define it similar to what is done for the existing ones. The +# name should be {TYPE}Record, and OID should be +# 1.3.6.1.4.1.2428.20.1.value. For instance the RR type LOC has value +# 29, so attribute name should be LocRecord (casing shouldn't matter), +# and the OID is 1.3.6.1.4.1.2428.20.1.29. If you follow this, you +# know that it will be compatible with what others use, and one is +# guaranteed that the OIDs are unique. +# The IANA DNS record type values are available from +# <URL: http://www.iana.org/assignments/dns-parameters >. +# +# If you define new attributes, please report them to dr...@uninett.no +# to get them added of this schema. +# +# The basic record types like A, CNAME etc are defined in the cosine +# schema and not in this schema. This means that your LDAP server +# must use both the cosine schema and this one to get all the DNS +# attributes defined. +# +dn: cn=schema +# dnsClass attribute is in fact unsupported by bind-dyndb-ldap +attributetypes: ( 1.3.6.1.4.1.2428.20.0.1 + NAME 'dNSClass' + DESC 'The class of a resource record' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.12 + NAME 'pTRRecord' + DESC 'domain name pointer, RFC 1035' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.13 + NAME 'hInfoRecord' + DESC 'host information, RFC 1035' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.14 + NAME 'mInfoRecord' + DESC 'mailbox or mail list information, RFC 1035' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.16 + NAME 'tXTRecord' + DESC 'text string, RFC 1035' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.18 + NAME 'aFSDBRecord' + DESC 'for AFS Data Base location, RFC 1183' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.28 + NAME 'aAAARecord' + DESC 'IPv6 address, RFC 1886' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.29 + NAME 'LocRecord' + DESC 'Location, RFC 1876' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.30 + NAME 'nXTRecord' + DESC 'non-existant, RFC 2535' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.33 + NAME 'sRVRecord' + DESC 'service location, RFC 2782' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.35 + NAME 'nAPTRRecord' + DESC 'Naming Authority Pointer, RFC 2915' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.36 + NAME 'kXRecord' + DESC 'Key Exchange Delegation, RFC 2230' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.37 + NAME 'certRecord' + DESC 'certificate, RFC 2538' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.38 + NAME 'a6Record' + DESC 'A6 Record Type, RFC 2874' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.39 + NAME 'dNameRecord' + DESC 'Non-Terminal DNS Name Redirection, RFC 6672' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.43 + NAME 'dSRecord' + DESC 'Delegation Signer, RFC 3658' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.44 + NAME 'sSHFPRecord' + DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.51 + NAME 'nSEC3PARAMRecord' + DESC 'RFC 5155' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord' + DESC 'DNS-Based Authentication of Named Entities - Transport Layer Security Protocol, RFC 6698' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.1.32769 + NAME 'DLVRecord' + DESC 'RFC 4431: DNSSEC Lookaside Validation' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.0 + NAME 'idnsName' + DESC 'DNS FQDN' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.1 + NAME 'idnsAllowDynUpdate' + DESC 'permit dynamic updates on this zone' + EQUALITY booleanMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.2 + NAME 'idnsZoneActive' + DESC 'define if the zone is considered in use' + EQUALITY booleanMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.3 + NAME 'idnsSOAmName' + DESC 'SOA Name' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.4 + NAME 'idnsSOArName' + DESC 'SOA root Name' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.5 + NAME 'idnsSOAserial' + DESC 'SOA serial number' + EQUALITY numericStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.6 + NAME 'idnsSOArefresh' + DESC 'SOA refresh value' + EQUALITY numericStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.7 + NAME 'idnsSOAretry' + DESC 'SOA retry value' + EQUALITY numericStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.8 + NAME 'idnsSOAexpire' + DESC 'SOA expire value' + EQUALITY numericStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.9 + NAME 'idnsSOAminimum' + DESC 'SOA minimum value' + EQUALITY numericStringMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.10 + NAME 'idnsUpdatePolicy' + DESC 'DNS dynamic updates policy' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.11 + NAME 'idnsAllowQuery' + DESC 'BIND9 allow-query ACL element' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.12 + NAME 'idnsAllowTransfer' + DESC 'BIND9 allow-transfer ACL element' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.13 + NAME 'idnsAllowSyncPTR' + DESC 'permit synchronization of PTR records' + EQUALITY booleanMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.14 + NAME 'idnsForwardPolicy' + DESC 'forward policy: only or first' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.15 + NAME 'idnsForwarders' + DESC 'list of forwarders' + EQUALITY caseIgnoreIA5Match + SUBSTR caseIgnoreIA5SubstringsMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributetypes: ( 2.16.840.1.113730.3.8.5.18 + NAME 'idnsSecInlineSigning' + DESC 'DNSSEC in-line signing' + EQUALITY booleanMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 + SINGLE-VALUE ) +# +objectClasses: ( 2.16.840.1.113730.3.8.6.0 + NAME 'idnsRecord' + DESC 'dns Record, usually a host' + SUP top + STRUCTURAL + MUST idnsName + MAY ( cn $ idnsAllowDynUpdate $ DNSTTL $ DNSClass $ ARecord $ + AAAARecord $ A6Record $ NSRecord $ CNAMERecord $ PTRRecord $ + SRVRecord $ TXTRecord $ MXRecord $ MDRecord $ HINFORecord $ + MINFORecord $ AFSDBRecord $ LOCRecord $ + NXTRecord $ NAPTRRecord $ KXRecord $ CERTRecord $ DNAMERecord $ + DSRecord $ SSHFPRecord $ DLVRecord $ TLSARecord + ) ) +# +objectClasses: ( 2.16.840.1.113730.3.8.6.1 + NAME 'idnsZone' + DESC 'Zone class' + SUP idnsRecord + STRUCTURAL + MUST ( idnsName $ idnsZoneActive $ idnsSOAmName $ idnsSOArName $ + idnsSOAserial $ idnsSOArefresh $ idnsSOAretry $ idnsSOAexpire $ + idnsSOAminimum + ) + MAY ( idnsUpdatePolicy $ idnsAllowQuery $ idnsAllowTransfer $ + idnsAllowSyncPTR $ idnsForwardPolicy $ idnsForwarders $ + idnsSecInlineSigning $ nSEC3PARAMRecord + ) ) +# +objectClasses: ( 2.16.840.1.113730.3.8.6.2 + NAME 'idnsConfigObject' + DESC 'DNS global config options' + STRUCTURAL + MAY ( idnsForwardPolicy $ idnsForwarders $ idnsAllowSyncPTR ) ) +# +objectClasses: ( 2.16.840.1.113730.3.8.6.3 + NAME 'idnsForwardZone' + DESC 'Forward Zone class' + SUP top + STRUCTURAL + MUST ( idnsName $ idnsZoneActive ) + MAY ( idnsForwarders $ idnsForwardPolicy ) ) -- 2.1.0
From e86c94b63e62fefef96fbec6377bf43a0e246d84 Mon Sep 17 00:00:00 2001 From: Petr Spacek <pspa...@redhat.com> Date: Thu, 21 May 2015 09:21:53 +0200 Subject: [PATCH] Add COSINE schema attributes to doc/schema. This allows us to use the schema file directly with FreeIPA which does not include COSINE schema. --- doc/schema | 46 +++++++++++++++++++++++++++++++++++++++++++--- 1 file changed, 43 insertions(+), 3 deletions(-) diff --git a/doc/schema b/doc/schema index cf2c24e31929807414233d043ae0005d1f7fdd2c..2c03062e69f80bab64c0ff8c4db5fd2b915a8358 100644 --- a/doc/schema +++ b/doc/schema @@ -23,11 +23,51 @@ # to get them added of this schema. # # The basic record types like A, CNAME etc are defined in the cosine -# schema and not in this schema. This means that your LDAP server -# must use both the cosine schema and this one to get all the DNS -# attributes defined. +# schema and not by UNINETT or FreeIPA. This means that your LDAP server +# should use the old COSINE schema (RFC 1274) plus this one to get +# all the DNS attributes defined. +# +# Alternativelly you can use included excerpt from COSINE schema to get all +# the missing attributes. # dn: cn=schema +# COSINE schema +# comment out if your server has COSINE schema installed +attributeTypes: ( 0.9.2342.19200300.100.1.26 + NAME 'aRecord' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributeTypes: ( 0.9.2342.19200300.100.1.27 + NAME 'mDRecord' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributeTypes: ( 0.9.2342.19200300.100.1.28 + NAME 'mXRecord' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# +attributeTypes: ( 0.9.2342.19200300.100.1.29 + NAME 'nSRecord' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) +# CNAME record was originally defined as multi-value +# but we redefined it as single-value to conform with RFC 2136, section 1.1.5. +attributeTypes: ( 0.9.2342.19200300.100.1.31 + NAME 'cNAMERecord' + EQUALITY caseIgnoreIA5Match + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + SINGLE-VALUE ) +# +attributetypes: ( 1.3.6.1.4.1.2428.20.0.0 + NAME 'dNSTTL' + DESC 'An integer denoting time to live' + EQUALITY integerMatch + SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 ) +# +# +# UNINETT and FreeIPA attributes # dnsClass attribute is in fact unsupported by bind-dyndb-ldap attributetypes: ( 1.3.6.1.4.1.2428.20.0.1 NAME 'dNSClass' -- 2.1.0
From e16a59471c5e9c88d4baee225c38c7dcd8159573 Mon Sep 17 00:00:00 2001 From: Petr Spacek <pspa...@redhat.com> Date: Thu, 21 May 2015 12:08:44 +0200 Subject: [PATCH] Fix doc/schema ordering to be compatible with OpenLDAP. --- doc/schema | 242 ++++++++++++++++++++++++++++++++----------------------------- 1 file changed, 126 insertions(+), 116 deletions(-) diff --git a/doc/schema b/doc/schema index 2c03062e69f80bab64c0ff8c4db5fd2b915a8358..872d505348e94e946d676b1178690f18cf2c8bac 100644 --- a/doc/schema +++ b/doc/schema @@ -30,307 +30,317 @@ # Alternativelly you can use included excerpt from COSINE schema to get all # the missing attributes. # +# +# 389 DS requires following DN dn: cn=schema +# +# OpenLDAP 2.4 requires following DN + objectClass + different attribute names +# s/^attributeTypes:/olcAttributeTypes:/ +# s/^objectClasses:/olcObjectClasses:/ +#dn: cn=dns,cn=schema,cn=config +#objectClass: olcSchemaConfig +# +# # COSINE schema # comment out if your server has COSINE schema installed attributeTypes: ( 0.9.2342.19200300.100.1.26 NAME 'aRecord' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match ) # attributeTypes: ( 0.9.2342.19200300.100.1.27 NAME 'mDRecord' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match ) # attributeTypes: ( 0.9.2342.19200300.100.1.28 NAME 'mXRecord' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match ) # attributeTypes: ( 0.9.2342.19200300.100.1.29 NAME 'nSRecord' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match ) # CNAME record was originally defined as multi-value # but we redefined it as single-value to conform with RFC 2136, section 1.1.5. attributeTypes: ( 0.9.2342.19200300.100.1.31 NAME 'cNAMERecord' - EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match SINGLE-VALUE ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.0.0 +attributeTypes: ( 1.3.6.1.4.1.2428.20.0.0 NAME 'dNSTTL' DESC 'An integer denoting time to live' - EQUALITY integerMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 + EQUALITY integerMatch ) # # # UNINETT and FreeIPA attributes # dnsClass attribute is in fact unsupported by bind-dyndb-ldap -attributetypes: ( 1.3.6.1.4.1.2428.20.0.1 +attributeTypes: ( 1.3.6.1.4.1.2428.20.0.1 NAME 'dNSClass' DESC 'The class of a resource record' - EQUALITY caseIgnoreIA5Match - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.12 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.12 NAME 'pTRRecord' DESC 'domain name pointer, RFC 1035' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.13 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.13 NAME 'hInfoRecord' DESC 'host information, RFC 1035' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.14 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.14 NAME 'mInfoRecord' DESC 'mailbox or mail list information, RFC 1035' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.16 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.16 NAME 'tXTRecord' DESC 'text string, RFC 1035' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.18 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.18 NAME 'aFSDBRecord' DESC 'for AFS Data Base location, RFC 1183' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.28 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.28 NAME 'aAAARecord' DESC 'IPv6 address, RFC 1886' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.29 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.29 NAME 'LocRecord' DESC 'Location, RFC 1876' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.30 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.30 NAME 'nXTRecord' DESC 'non-existant, RFC 2535' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.33 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.33 NAME 'sRVRecord' DESC 'service location, RFC 2782' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.35 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.35 NAME 'nAPTRRecord' DESC 'Naming Authority Pointer, RFC 2915' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.36 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.36 NAME 'kXRecord' DESC 'Key Exchange Delegation, RFC 2230' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.37 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.37 NAME 'certRecord' DESC 'certificate, RFC 2538' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.38 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.38 NAME 'a6Record' DESC 'A6 Record Type, RFC 2874' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.39 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.39 NAME 'dNameRecord' DESC 'Non-Terminal DNS Name Redirection, RFC 6672' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) + SINGLE-VALUE ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.43 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.43 NAME 'dSRecord' DESC 'Delegation Signer, RFC 3658' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.44 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.44 NAME 'sSHFPRecord' DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.51 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.51 NAME 'nSEC3PARAMRecord' DESC 'RFC 5155' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord' +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.52 NAME 'TLSARecord' DESC 'DNS-Based Authentication of Named Entities - Transport Layer Security Protocol, RFC 6698' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 1.3.6.1.4.1.2428.20.1.32769 +attributeTypes: ( 1.3.6.1.4.1.2428.20.1.32769 NAME 'DLVRecord' DESC 'RFC 4431: DNSSEC Lookaside Validation' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.0 +attributeTypes: ( 2.16.840.1.113730.3.8.5.0 NAME 'idnsName' DESC 'DNS FQDN' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.1 +attributeTypes: ( 2.16.840.1.113730.3.8.5.1 NAME 'idnsAllowDynUpdate' DESC 'permit dynamic updates on this zone' - EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) + EQUALITY booleanMatch + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.2 +attributeTypes: ( 2.16.840.1.113730.3.8.5.2 NAME 'idnsZoneActive' DESC 'define if the zone is considered in use' - EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) + EQUALITY booleanMatch + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.3 +attributeTypes: ( 2.16.840.1.113730.3.8.5.3 NAME 'idnsSOAmName' DESC 'SOA Name' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.4 +attributeTypes: ( 2.16.840.1.113730.3.8.5.4 NAME 'idnsSOArName' DESC 'SOA root Name' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.5 +attributeTypes: ( 2.16.840.1.113730.3.8.5.5 NAME 'idnsSOAserial' DESC 'SOA serial number' - EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + EQUALITY numericStringMatch SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.6 +attributeTypes: ( 2.16.840.1.113730.3.8.5.6 NAME 'idnsSOArefresh' DESC 'SOA refresh value' - EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + EQUALITY numericStringMatch SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.7 +attributeTypes: ( 2.16.840.1.113730.3.8.5.7 NAME 'idnsSOAretry' DESC 'SOA retry value' - EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 + EQUALITY numericStringMatch SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.8 +attributeTypes: ( 2.16.840.1.113730.3.8.5.8 NAME 'idnsSOAexpire' DESC 'SOA expire value' - EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) + EQUALITY numericStringMatch + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.9 +attributeTypes: ( 2.16.840.1.113730.3.8.5.9 NAME 'idnsSOAminimum' DESC 'SOA minimum value' - EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.36 - SINGLE-VALUE ) + EQUALITY numericStringMatch + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.10 +attributeTypes: ( 2.16.840.1.113730.3.8.5.10 NAME 'idnsUpdatePolicy' DESC 'DNS dynamic updates policy' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.11 +attributeTypes: ( 2.16.840.1.113730.3.8.5.11 NAME 'idnsAllowQuery' DESC 'BIND9 allow-query ACL element' - EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 + EQUALITY caseIgnoreIA5Match SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.12 +attributeTypes: ( 2.16.840.1.113730.3.8.5.12 NAME 'idnsAllowTransfer' DESC 'BIND9 allow-transfer ACL element' - EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 - SINGLE-VALUE ) + EQUALITY caseIgnoreIA5Match + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.13 +attributeTypes: ( 2.16.840.1.113730.3.8.5.13 NAME 'idnsAllowSyncPTR' DESC 'permit synchronization of PTR records' - EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 - SINGLE-VALUE ) + EQUALITY booleanMatch + SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.14 +attributeTypes: ( 2.16.840.1.113730.3.8.5.14 NAME 'idnsForwardPolicy' DESC 'forward policy: only or first' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.15 +attributeTypes: ( 2.16.840.1.113730.3.8.5.15 NAME 'idnsForwarders' DESC 'list of forwarders' + SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 EQUALITY caseIgnoreIA5Match - SUBSTR caseIgnoreIA5SubstringsMatch - SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) + SUBSTR caseIgnoreIA5SubstringsMatch ) # -attributetypes: ( 2.16.840.1.113730.3.8.5.18 +attributeTypes: ( 2.16.840.1.113730.3.8.5.18 NAME 'idnsSecInlineSigning' DESC 'DNSSEC in-line signing' - EQUALITY booleanMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 + EQUALITY booleanMatch SINGLE-VALUE ) # objectClasses: ( 2.16.840.1.113730.3.8.6.0 -- 2.1.0
From e8444906881f4ba5d707fa2a611f1a8187142d00 Mon Sep 17 00:00:00 2001 From: Petr Spacek <pspa...@redhat.com> Date: Thu, 21 May 2015 12:14:56 +0200 Subject: [PATCH] Rename doc/schema to doc/schema.ldif. --- doc/Makefile.am | 2 +- doc/{schema => schema.ldif} | 0 2 files changed, 1 insertion(+), 1 deletion(-) rename doc/{schema => schema.ldif} (100%) diff --git a/doc/Makefile.am b/doc/Makefile.am index 83ef23320962ede0e1a338cef41f77ebf704f86a..8a06902b7a81f2c41b06b44fdfecb8ba81948365 100644 --- a/doc/Makefile.am +++ b/doc/Makefile.am @@ -1 +1 @@ -dist_doc_DATA = example.ldif schema +dist_doc_DATA = example.ldif schema.ldif diff --git a/doc/schema b/doc/schema.ldif similarity index 100% rename from doc/schema rename to doc/schema.ldif -- 2.1.0
-- Manage your subscription for the Freeipa-devel mailing list: https://www.redhat.com/mailman/listinfo/freeipa-devel Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code