Re: [ldapext] empty-groupOfNames-issue
Andrew Findlay <andrew.findlay@skills-1st.co.uk> Fri, 04 December 2015 16:34 UTC
Return-Path: <andrew.findlay@skills-1st.co.uk>
X-Original-To: ldapext@ietfa.amsl.com
Delivered-To: ldapext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C7AD1A902D for <ldapext@ietfa.amsl.com>; Fri, 4 Dec 2015 08:34:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oVI-OQxJgA0P for <ldapext@ietfa.amsl.com>; Fri, 4 Dec 2015 08:34:34 -0800 (PST)
Received: from kea.ourshack.com (kea.ourshack.com [IPv6:2001:470:1f15:20::201]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C6A271A8AAE for <ldapext@ietf.org>; Fri, 4 Dec 2015 08:34:33 -0800 (PST)
Received: from 4.9.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.e.7.f.0.d.8.0.0.b.8.0.1.0.0.2.ip6.arpa ([2001:8b0:8d0:f7e1::94] helo=slab.skills-1st.co.uk) by kea.ourshack.com with esmtpsa (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.72) (envelope-from <andrew.findlay@skills-1st.co.uk>) id 1a4tJW-0006rN-6N; Fri, 04 Dec 2015 16:34:30 +0000
Received: from andrew by slab.skills-1st.co.uk with local (Exim 4.85) (envelope-from <andrew.findlay@skills-1st.co.uk>) id 1a4tJV-0002bh-MH; Fri, 04 Dec 2015 16:34:29 +0000
Date: Fri, 04 Dec 2015 16:34:29 +0000
From: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
To: Simo Sorce <simo@redhat.com>
Message-ID: <20151204163429.GI3643@slab.skills-1st.co.uk>
References: <5661765D.6040603@stroeder.com> <20151204134757.GE3643@slab.skills-1st.co.uk> <1449243887.3445.59.camel@redhat.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <1449243887.3445.59.camel@redhat.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Sender: Andrew Findlay <andrew.findlay@skills-1st.co.uk>
Archived-At: <http://mailarchive.ietf.org/arch/msg/ldapext/QeANOrb__Yhk56L9snDiV_rUpEA>
Cc: ldapext <ldapext@ietf.org>, Michael Ströder <michael@stroeder.com>
Subject: Re: [ldapext] empty-groupOfNames-issue
X-BeenThere: ldapext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: LDAP Extension Working Group <ldapext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ldapext>, <mailto:ldapext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ldapext/>
List-Post: <mailto:ldapext@ietf.org>
List-Help: <mailto:ldapext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ldapext>, <mailto:ldapext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Dec 2015 16:34:35 -0000
On Fri, Dec 04, 2015 at 10:44:47AM -0500, Simo Sorce wrote:
> An auxiliary class may be a better choice for a standard.
Yes: I also prefer to define aux classes where possible.
groupOfEntries was defined STRUCTURAL to make it a drop-in
replacement for groupOfNames.
If we were starting from a clean slate we might just define:
( 1.2.826.0.1.3458854.2.1.1.666 NAME 'membershipObject'
SUP top
AUXILIARY
MAY ( member )
)
and allow designers to apply it to any appropriate structural class.
Following that to its logical conclusion would give almost 1:1
correspondence between objectclasses and attributetypes, which most
would probably regard as over-normalisation!
In fact I think groups are very reasonable STRUCTURAL objects,
as the concept of groups has such broad application. Where I might argue
with the current definition of groupOfNames/groupOfEntries is the list
of other descriptive attributes (why should groups have a
businessCategory but no displayName for example?)
Andrew
--
-----------------------------------------------------------------------
| From Andrew Findlay, Skills 1st Ltd |
| Consultant in large-scale systems, networks, and directory services |
| http://www.skills-1st.co.uk/ +44 1628 782565 |
-----------------------------------------------------------------------
- [ldapext] empty-groupOfNames-issue Michael Ströder
- Re: [ldapext] empty-groupOfNames-issue Andrew Findlay
- Re: [ldapext] empty-groupOfNames-issue Michael Ströder
- Re: [ldapext] empty-groupOfNames-issue Andrew Findlay
- Re: [ldapext] empty-groupOfNames-issue Simo Sorce
- Re: [ldapext] empty-groupOfNames-issue Simo Sorce
- Re: [ldapext] empty-groupOfNames-issue Simo Sorce
- Re: [ldapext] empty-groupOfNames-issue Andrew Findlay
- Re: [ldapext] empty-groupOfNames-issue Michael Ströder
- Re: [ldapext] empty-groupOfNames-issue Michael Ströder
- Re: [ldapext] empty-groupOfNames-issue Simo Sorce
- Re: [ldapext] empty-groupOfNames-issue Jordan Brown