| # Licensed to the Apache Software Foundation (ASF) under one |
| # or more contributor license agreements. See the NOTICE file |
| # distributed with this work for additional information |
| # regarding copyright ownership. The ASF licenses this file |
| # to you under the Apache License, Version 2.0 (the |
| # "License"); you may not use this file except in compliance |
| # with the License. You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, |
| # software distributed under the License is distributed on an |
| # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| # KIND, either express or implied. See the License for the |
| # specific language governing permissions and limitations |
| # under the License. |
| |
| # ============================================================================= |
| # Apache Schema |
| # ============================================================================= |
| # |
| # +-----------------------------+-----------------+ |
| # | Apache AttributeType OID | name | |
| # +-----------------------------+-----------------+ |
| # | 1.3.6.1.4.1.18060.0.4.1.2.1 | apacheNdn | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.2 | apacheUpdn | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.3 | apacheExistance | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.4 | apacheHierarchy | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.5 | apacheOneAlias | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.6 | apacheSubAlias | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.7 | apacheAlias | |
| # +-----------------------------+-----------------+ |
| # ============================================================================= |
| |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.1 NAME 'apacheNdn' |
| DESC 'Index attribute DN whose values are normalized based on schema' |
| EQUALITY exactDnAsStringMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.2 NAME 'apacheUpdn' |
| DESC 'Index attribute for DN whose values are NOT normalized in any way' |
| EQUALITY exactDnAsStringMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.3 NAME 'apacheExistance' |
| DESC 'Index attribute used to track the existence of attributes' |
| SUP name |
| EQUALITY caseIgnoreMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.4 NAME 'apacheHierarchy' |
| DESC 'Index attribute used to track the DIT hierarchy' |
| EQUALITY integerMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.5 NAME 'apacheOnealias' |
| DESC 'Index attribute used to track single level aliases' |
| EQUALITY integerMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.6 NAME 'apacheSubalias' |
| DESC 'Index attribute used to track single level aliases' |
| EQUALITY integerMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.7 NAME 'apacheAlias' |
| DESC 'asdf' |
| SUP distinguishedName |
| EQUALITY distinguishedNameMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE dSAOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.9 NAME 'apacheSamType' |
| DESC 'Single-use Authentication Mechanism type/vendor code' |
| EQUALITY integerMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 |
| SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.8 NAME 'prefNodeName' |
| DESC 'Attribute to describe the name of a Java Preferences API node' |
| EQUALITY caseExactMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 |
| SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.10 NAME 'autonomousAreaSubentry' |
| DESC 'Used to track a subentry associated with an autonomousArea' |
| SUP distinguishedName |
| EQUALITY distinguishedNameMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE directoryOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.11 NAME 'accessControlSubentries' |
| DESC 'Used to track a subentry associated with access control areas' |
| SUP distinguishedName |
| EQUALITY distinguishedNameMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 |
| NO-USER-MODIFICATION |
| USAGE directoryOperation ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.1 NAME 'prefNode' |
| SUP top |
| STRUCTURAL |
| MUST prefNodeName ) |
| |
| #attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.12 NAME 'prescriptiveACI' |
| attributetype ( 2.5.24.4 NAME 'prescriptiveACI' |
| DESC 'Access control information that applies to a set of entries' |
| EQUALITY directoryStringFirstComponentMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.1 |
| USAGE directoryOperation ) |
| |
| # was attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.13 NAME 'entryACI' ... |
| attributetype ( 2.5.24.5 NAME 'entryACI' |
| DESC 'Access control information that applies to a single entry' |
| EQUALITY directoryStringFirstComponentMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.1 |
| USAGE directoryOperation ) |
| |
| #attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.14 NAME 'subentryACI' |
| attributetype ( 2.5.24.6 NAME 'subentryACI' |
| DESC 'Access control information that applies to a single subentry' |
| EQUALITY directoryStringFirstComponentMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.1 |
| USAGE directoryOperation ) |
| |
| objectclass ( 2.5.17.1 |
| NAME 'accessControlSubentry' |
| AUXILIARY |
| MUST prescriptiveACI ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.15 |
| NAME 'apacheServicePid' |
| DESC 'A string up to 256 characters in length' |
| EQUALITY caseIgnoreIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.16 |
| NAME 'apacheServiceFactoryPid' |
| DESC 'A string up to 256 characters in length' |
| EQUALITY caseIgnoreIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.3 |
| NAME 'apacheServiceConfiguration' |
| SUP top |
| STRUCTURAL |
| MUST ( cn $ apacheServicePid ) |
| MAY ( apacheServiceFactoryPid ) ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.4 |
| NAME 'apacheFactoryConfiguration' |
| SUP top |
| STRUCTURAL |
| MUST ( cn $ apacheServicePid ) ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.17 |
| NAME 'apacheCatalogEntryName' |
| DESC 'A string up to 256 characters in length' |
| EQUALITY caseIgnoreIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.18 |
| NAME 'apacheCatalogEntryBaseDn' |
| DESC 'A string up to 256 characters in length' |
| EQUALITY caseIgnoreIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.5 |
| NAME 'apacheCatalogEntry' |
| SUP top |
| STRUCTURAL |
| MUST ( cn $ apacheCatalogEntryBaseDn ) |
| MAY ( apacheCatalogEntryName ) ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.19 |
| NAME 'windowsFilePath' |
| DESC 'A windows file path where case does not make a difference' |
| EQUALITY caseIgnoreIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.20 |
| NAME 'unixFilePath' |
| DESC 'A UNIX file path where case does make a difference' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.6 |
| NAME 'windowsFile' |
| SUP top |
| STRUCTURAL |
| MUST ( windowsFilePath ) ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.7 |
| NAME 'unixFile' |
| SUP top |
| STRUCTURAL |
| MUST ( unixFilePath ) ) |
| |
| # =============== |
| # SP related |
| # =============== |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.21 |
| NAME 'fullyQualifiedJavaClassName' |
| DESC 'The fully qualified name for a (Java) class' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.22 |
| NAME 'javaClassByteCode' |
| DESC 'The actual byte code for a (Java) class' |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.8 |
| NAME 'javaClass' |
| SUP top |
| STRUCTURAL |
| MUST ( fullyQualifiedJavaClassName $ javaClassByteCode ) ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.23 |
| NAME 'classLoaderDefaultSearchContext' |
| DESC 'The default search context for the Ldap Class Loader' |
| SUP distinguishedName |
| EQUALITY distinguishedNameMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) |
| |
| # New SP related schema |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.1 |
| NAME 'storedProcLangId' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 |
| SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.2 |
| NAME 'storedProcUnitName' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 |
| SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.5.3 |
| NAME 'storedProcUnit' |
| SUP top |
| ABSTRACT |
| MUST ( storedProcLangId $ storedProcUnitName ) ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.4 |
| NAME 'javaByteCode' |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.5.5 |
| NAME 'javaStoredProcUnit' |
| SUP storedProcUnit |
| STRUCTURAL |
| MUST ( javaByteCode ) ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.6 |
| NAME 'javaxScriptLangId' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 |
| SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.5.7 |
| NAME 'javaxScriptCode' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 |
| SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.5.8 |
| NAME 'javaxScriptStoredProcUnit' |
| SUP storedProcUnit |
| STRUCTURAL |
| MUST ( javaxScriptLangId $ javaxScriptCode ) ) |
| |
| # =============== |
| # Trigger related |
| # =============== |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.25 NAME 'prescriptiveTriggerSpecification' |
| DESC 'Trigger specification that applies to a set of entries' |
| EQUALITY directoryStringFirstComponentMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.59 |
| USAGE directoryOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.26 NAME 'entryTriggerSpecification' |
| DESC 'Trigger specification that applies to a single entry' |
| EQUALITY directoryStringFirstComponentMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.59 |
| USAGE directoryOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.27 NAME 'triggerExecutionSubentries' |
| DESC 'Used to track subentries associated with a trigger area which an entry falls under' |
| SUP distinguishedName |
| EQUALITY distinguishedNameMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 |
| NO-USER-MODIFICATION |
| USAGE directoryOperation ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.2.28 NAME 'triggerExecutionSubentry' |
| DESC 'Used to track a subentry associated with trigger areas' |
| AUXILIARY |
| MUST prescriptiveTriggerSpecification ) |
| |
| # ====================== |
| # End of Trigger related |
| # ====================== |
| |
| # ====================== |
| # Mitosis Related |
| # ====================== |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.29 |
| NAME 'entryUUID' |
| DESC 'LCUP/LDUP: UUID of the entry' |
| EQUALITY octetStringMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{64} |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE directoryOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.30 |
| NAME 'entryCSN' |
| DESC 'LCUP/LDUP: change sequence number of the entry' |
| EQUALITY octetStringMatch |
| ORDERING octetStringOrderingMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{64} |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE directoryOperation ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.31 |
| NAME 'entryDeleted' |
| DESC 'Whether or not an entry has been deleted.' |
| EQUALITY booleanMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 |
| SINGLE-VALUE |
| NO-USER-MODIFICATION |
| USAGE directoryOperation ) |
| |
| # ====================== |
| # End of Mitosis Related |
| # ====================== |
| |
| # ======================= |
| # Schema Subentry Related |
| # ======================= |
| |
| # | 1.3.6.1.4.1.18060.0.4.1.2.32 | comparators | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.33 | normalizers | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.34 | syntaxCheckers | |
| |
| |
| # |
| # These operational attributes need a syntax! |
| # |
| |
| # --- comparators AttributeType ----------------------------------- |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.32 NAME 'comparators' |
| DESC 'A multivalued comparator description attribute' |
| EQUALITY caseIgnoreMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 |
| USAGE directoryOperation |
| ) |
| |
| # --- normalizers AttributeType ----------------------------------- |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.33 NAME 'normalizers' |
| DESC 'A multivalued normalizer description attribute' |
| EQUALITY caseIgnoreMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 |
| USAGE directoryOperation |
| ) |
| |
| # --- syntaxCheckers AttributeType ----------------------------------- |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.34 NAME 'syntaxCheckers' |
| DESC 'A multivalued syntaxCheckers description attribute' |
| EQUALITY caseIgnoreMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 |
| USAGE directoryOperation |
| ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.9 NAME 'apacheSubschema' |
| DESC 'RFC2252 extension for controlling subschema (sub)entry in ApacheDS' |
| SUP subschema |
| AUXILIARY |
| MAY ( comparators $ normalizers $ syntaxCheckers ) ) |
| |
| # =========================== |
| # END Schema Subentry Related |
| # =========================== |
| |
| # ============================================= |
| # Schema Subentry Modification Attribute Schema |
| # ============================================= |
| |
| # | 1.3.6.1.4.1.18060.0.4.1.2.35 | schemaModifyTimestamp | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.36 | schemaModifiersName | |
| # | 1.3.6.1.4.1.18060.0.4.1.2.37 | subschemaSubentryName | |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.35 NAME 'schemaModifyTimestamp' |
| DESC 'time which schema was modified' |
| SUP modifyTimestamp ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.36 NAME 'schemaModifiersName' |
| DESC 'the DN of the modifier of the schema' |
| SUP modifiersName ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.37 NAME 'subschemaSubentryName' |
| DESC 'the DN of the schema subentry the modification info corresponds to' |
| EQUALITY distinguishedNameMatch |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{32768} ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.10 NAME 'schemaModificationAttributes' |
| DESC 'a special entry tracking schema modification attributes' |
| SUP top STRUCTURAL |
| MUST ( cn $ subschemaSubentryName $ |
| schemaModifyTimestamp $ schemaModifiersName ) ) |
| |
| # ================================================= |
| # END Schema Subentry Modification Attribute Schema |
| # ================================================= |
| |
| # ============================================= |
| # SSL/TLS Key Management for LDAPS and StartTLS |
| # ============================================= |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.38 |
| NAME 'privateKeyFormat' |
| DESC 'The format of the private key used for TLS' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.41 |
| NAME 'publicKeyFormat' |
| DESC 'The format of the public key used for TLS' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.39 |
| NAME 'keyAlgorithm' |
| DESC 'The algorithm used for the key/pair used by the server for TLS' |
| EQUALITY caseExactIA5Match |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.40 |
| NAME 'privateKey' |
| DESC 'The private key material used for TLS' |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) |
| |
| attributetype ( 1.3.6.1.4.1.18060.0.4.1.2.42 |
| NAME 'publicKey' |
| DESC 'The public key material used for TLS' |
| SYNTAX 1.3.6.1.4.1.1466.115.121.1.5 SINGLE-VALUE ) |
| |
| objectclass ( 1.3.6.1.4.1.18060.0.4.1.3.11 |
| NAME 'tlsKeyInfo' |
| SUP top |
| AUXILIARY |
| MUST ( privateKeyFormat $ keyAlgorithm $ privateKey $ |
| publicKeyFormat $ publicKey ) ) |
| |
| # ================================================= |
| # END SSL/TLS Key Management for LDAPS and StartTLS |
| # ================================================= |
| |