--=-I6d9E5fOqbwKcJhhvz+z Content-Type: text/plain Content-Transfer-Encoding: quoted-printable
On Tue, 2008-05-27 at 18:22 -0700, Howard Chu wrote:
abartlet@samba.org wrote:
Full_Name: Andrew Bartlett Version: CVS HEAD OS: Fedora 9 URL: http://www.openldap.org/lists/openldap-technical/200803/msg00101.h=
tml
Submission from: (NULL) (59.167.251.137)
For Samba4, I need a few things, detailed in the attached URL.
=20 The above message thread had some unanswered questions. We may need to ha=
ve=20
each point listed out again. =20
This ITS is for internal transactions and validation - the ability to h=
ave a
openldap overlay roll back all the changes so far, because a preconditi=
on is not
met.
=20 I think this one is understood, OK. Just a matter of getting the time to =
do it.
=20
I need the memberOf and refint modules to ensure that no dangling links=
ever
exist, even over subtree renames and invalid modifies, and that a trans=
action
ensures this is always the case.
=20 I think the proper use of memberOf still needs to be addressed. E.g., it'=
s=20
generally a bad idea to search for (memberOf=3Dfoo) when you can simply=20 enumerate the members inside the "foo" entry. If you give us precise exam=
ples=20
of the searches and modifications that you'll be using, we may be able to=
=20
narrow the scope of this work.
I'll be passing on any search that a windows client makes, and trying to return the same result a windows server would return. Bad ideas still have to be implemented in my world :-(
This needs to occur even between databases on the server, but I won't a=
sk that
it occur outside the known trees.
=20 It's already possible for operations in one database to reference entries=
in a=20
different database, so that aspect of validation should be fine. However,=
as=20
noted before, "validation" is generally bogus to begin with. In particula=
r,=20
how do you create entries with circular references? If you disallow refer=
ences=20
to nonexistent entries, you can't set the references until after all of t=
he=20
entries have been created. This means that you cannot backup a database t=
hat=20
has these references and then later reload it in a single pass.
An interesting point, but I need to match the windows runtime behaviour.=20
Andrew Bartlett
--=20 Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc.
--=-I6d9E5fOqbwKcJhhvz+z Content-Type: application/pgp-signature; name=signature.asc Content-Description: This is a digitally signed message part
--=-I6d9E5fOqbwKcJhhvz+z--
-
abartlet@samba.org