python-ldap-dev Mailing List for python-ldap (Page 129)

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Federico Di Gregorio wrote:
> 
> Scavenging the mail folder uncovered Michael Ströder's letter:
> > Federico Di Gregorio wrote:
> >
> > I will have a closer look at it as soon as it appears in the CVS.
> >
> > > > I asked about LDAPv3 two days ago.
> > >
> > > i am sorry but i don't know about v3. any urls?
> >
> > RFC2251..2256. (I would not claim having read through all of this.)
> >
> > What IS really of interest that you can retrieve all object classes,
> > attributes and syntaxes with their OIDs existing on a particular
> > LDAP host by reading a schema entry from the root DSE => you don't
> > have to configure the LDAP client to know all the schema
> > definitions. Unfortunately LDAPv3 servers does not provide this
> > functionality to LDAPv2 clients.
> 
> i don't understand very well. can you elaborate or give an example?

E.g. a LDAPv3 server has a special entry under his RootDSE that
might look like this (shortened schema from a Domino server, lines
are wrapped):

Found under cn=schema:

objectclass=top
objectclass=subschema
objectclasses=( 2.5.6.0 NAME 'Top' ABSTRACT  MUST ( objectClass )
NOTES '' )
objectclasses=( 2.5.6.6 NAME 'person' ABSTRACT SUP 'Top'  MUST (
objectClass $ sn $ cn ) MAY ( userPa
objectclasses=( 2.5.6.7 NAME 'organizationalPerson' ABSTRACT SUP
'person'  MUST ( objectClass $ sn $ 
objectclasses=( 2.16.840.1.113730.3.2.2 NAME 'inetOrgPerson'
ABSTRACT SUP 'organizationalPerson'  MUS
objectclasses=( 2.5.6.9 NAME 'groupOfNames' ABSTRACT SUP 'Top'  MUST
( objectClass $ member $ cn ) MA
objectclasses=( 2.16.840.1.113678.2.2.2.1.2 NAME 'dominoGroup'
STRUCTURAL SUP 'groupOfNames'  MUST ( 
objectclasses=( id-oc-DominoPDPerson NAME 'PDPerson' STRUCTURAL SUP
'Top'  MUST ( objectClass ) MAY (
objectclasses=( 2.16.840.1.113678.2.2.2.1.3 NAME 'dominoPerson'
STRUCTURAL SUP 'inetOrgPerson'  MUST 
objectclasses=( 2.5.6.4 NAME 'organization' STRUCTURAL SUP 'Top' 
MUST ( objectClass ) MAY ( DisplayN
objectclasses=( 2.5.6.5 NAME 'organizationalUnit' STRUCTURAL SUP
'Top'  MUST ( objectClass ) MAY ( Di
objectclasses=( 2.16.840.1.113678.2.2.2.1.6 NAME 'Server' STRUCTURAL
SUP 'Top'  MUST ( objectClass ) 
objectclasses=( id-oc-Domino$DomainExtensibleSchema NAME
'$DomainExtensibleSchema' AUXILIARY SUP 'Top
objectclasses=( 2.16.840.1.113678.2.2.2.1.7 NAME
'$PersonGeneralInfo' AUXILIARY SUP 'Top'  MUST ( obj
objectclasses=( id-oc-Domino$$SearchTemplate for PDPeopleSearch NAME
'$$SearchTemplate for PDPeopleSe
ditcontentrules=( 2.16.840.1.113678.2.2.2.1.3 NAME 'dominoPerson'
AUX ( $PersonGeneralInfo ))
attributetypes=( 2.5.4.0 NAME 'objectClass' SYNTAX
1.3.6.1.4.1.1466.115.121.1.38 NOTES 'Type' )
attributetypes=( 2.5.4.4 NAME 'sn' SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 ALIAS ( surName $ s ) NOTES '
attributetypes=( 2.5.4.3 NAME 'cn' SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 ALIAS ( commonName ) NOTES 'C
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.5 DESC 'Binary' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.6 DESC 'Bit String' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.7 DESC 'Boolean' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.22 DESC 'Facsimile
Telephone Number' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.23 DESC 'Fax' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.24 DESC 'Generalized Time'
)
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.25 DESC 'Guide' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.26 DESC 'IA5 String' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.27 DESC 'INTEGER' )
ldapsyntaxes=( 1.3.6.1.4.1.1466.115.121.1.28 DESC 'JPEG' )

This should give you an idea of how powerful this mechanism is for
generic LDAP clients. I already started writing a parser for this
but got stuck because up to now I do not have a good class library.

Ciao, Michael.

2000	Jan	Feb (34)	Mar (9)	Apr	May (2)	Jun (14)	Jul (67)	Aug (34)	Sep (5)	Oct (20)	Nov (22)	Dec (31)
2001	Jan (15)	Feb (16)	Mar (20)	Apr (13)	May (72)	Jun (42)	Jul (41)	Aug (11)	Sep (19)	Oct (67)	Nov (59)	Dec (57)
2002	Jan (74)	Feb (69)	Mar (34)	Apr (55)	May (47)	Jun (74)	Jul (116)	Aug (68)	Sep (25)	Oct (42)	Nov (28)	Dec (52)
2003	Jan (19)	Feb (18)	Mar (35)	Apr (49)	May (73)	Jun (39)	Jul (26)	Aug (59)	Sep (33)	Oct (56)	Nov (69)	Dec (137)
2004	Jan (276)	Feb (15)	Mar (18)	Apr (27)	May (25)	Jun (7)	Jul (13)	Aug (2)	Sep (2)	Oct (10)	Nov (27)	Dec (28)
2005	Jan (22)	Feb (25)	Mar (41)	Apr (17)	May (36)	Jun (13)	Jul (22)	Aug (12)	Sep (23)	Oct (6)	Nov (4)	Dec
2006	Jan (11)	Feb (3)	Mar (5)	Apr (22)	May (1)	Jun (10)	Jul (19)	Aug (7)	Sep (25)	Oct (23)	Nov (5)	Dec (27)
2007	Jan (25)	Feb (17)	Mar (44)	Apr (8)	May (33)	Jun (31)	Jul (42)	Aug (16)	Sep (12)	Oct (16)	Nov (23)	Dec (73)
2008	Jan (26)	Feb (6)	Mar (46)	Apr (17)	May (1)	Jun (44)	Jul (9)	Aug (34)	Sep (20)	Oct (2)	Nov (4)	Dec (16)
2009	Jan (14)	Feb (3)	Mar (45)	Apr (52)	May (34)	Jun (32)	Jul (24)	Aug (52)	Sep (22)	Oct (23)	Nov (19)	Dec (10)
2010	Jan (10)	Feb (13)	Mar (22)	Apr (9)	May (1)	Jun (1)	Jul (8)	Aug (9)	Sep (10)	Oct (1)	Nov (2)	Dec (3)
2011	Jan	Feb (18)	Mar (39)	Apr (5)	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec

python-ldap-dev Mailing List for python-ldap (Page 129)

python-ldap-dev — discussion among developers