A fairly basic question to confirm functionality (and options).
Currently, we have a fairly basic configuration of a "master" server and then a couple of "slaves" using syncrepl and chaining. All is working great (in this prototype). We have come across one point we would like to confirm though.
When an update is sent to a "slave", the updateref tells the slave to make the update on the master and the client is non-the wiser. That is, until the master returns an error. If the master returns an error (master unavailable or master actually returned a non-zero error code), the slave returns the referral to the client to the master and the client needs to connect to the master to determine what's up (of course, the client might not have permissions to do what it needs on the master to even be able to replicate the same situation to get the same error message?)
Is the above the expected functionality?
Are there options for the above which would pass the error code from the master to the slave to the client instead of passing the referral of the master to the client?
Currently using 2.3.38.
Kudos to the OpenLDAP team. This is really pretty slick.
Benji
--- Benji Spencer System Administrator Ph: 312-329-2288
Ben Spencer wrote:
A fairly basic question to confirm functionality (and options).
Currently, we have a fairly basic configuration of a "master" server and then a couple of "slaves" using syncrepl and chaining. All is working great (in this prototype). We have come across one point we would like to confirm though.
When an update is sent to a "slave", the updateref tells the slave to make the update on the master and the client is non-the wiser. That is, until the master returns an error. If the master returns an error (master unavailable or master actually returned a non-zero error code), the slave returns the referral to the client to the master and the client needs to connect to the master to determine what's up (of course, the client might not have permissions to do what it needs on the master to even be able to replicate the same situation to get the same error message?)
Is the above the expected functionality?
Yes.
Are there options for the above which would pass the error code from the master to the slave to the client instead of passing the referral of the master to the client?
You can set:
chain-return-error true
See:
http://www.openldap.org/software/man.cgi?query=slapo-chain&apropos=0&...
and "man slapo-chain"
Currently using 2.3.38.
Kudos to the OpenLDAP team. This is really pretty slick.
Thanks, but read the man page first! (man slapo-chain) ;-)
Benji
Benji Spencer System Administrator Ph: 312-329-2288
Yes.
Thanks for confirming
You can set:
chain-return-error true
See:
http://www.openldap.org/software/man.cgi?query=slapo- chain&apropos=0&sektion=0&manpath=OpenLDAP+2.3-Release&format=html
and "man slapo-chain"
Odd. "man slapo-chain" on the 2.3.38 system I have is a different man then the online version :/ I did read the one on my system. I did find http://www.openldap.org/lists/openldap-software/200709/msg00059.html which may reference the man issue :/
Thanks, but read the man page first! (man slapo-chain) ;-)
I did -- just happens to be the wrong one :/
Thanks for the information even if it was in the man.
Benji
--On Sunday, November 11, 2007 4:28 PM -0600 Ben Spencer ben.spencer@moody.edu wrote:
Thanks, but read the man page first! (man slapo-chain) ;-)
I did -- just happens to be the wrong one :/
Thanks for the information even if it was in the man.
Online defaults to OpenLDAP 2.4. Even if you pick OpenLDAP 2.3, the man pages for that may not be the most current ones, and if they are the most current, may differ from the particular release you are using. Generally, it is always best to refer to the man pages shipped with the release you are using. :)
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
openldap-software@openldap.org
-
Ben Spencer -
Gavin Henry -
Quanah Gibson-Mount