[Freeipa-devel] [PATCH] 1087 Some missing v3 schema on upgrades
Rob Crittenden
rcritten at redhat.com
Tue Feb 19 18:32:27 UTC 2013
Jan Cholasta wrote:
> Hi,
>
> On 18.2.2013 22:00, Rob Crittenden wrote:
>> An objectclass and attribute are not being added on upgrades. Missing
>> these causes the UI to not work.
>>
>> I also noticed a typo in the ordering of a number of the trust
>> attributes so fix those as well.
>>
>> rob
>>
>
> The patch looks good, but I think errors like this will pop up from time
> to time, because we have to maintain the same thing in two places - the
> installation LDIFs and update files. Maybe we should start thinking
> about merging these two somehow, e.g. using the LDIFs for both
> installation and updates, with directives for the updater in specially
> formatted comments.
>
> Honza
>
This idea came up long, long ago when we first added the updater very
early in v2. The problem, as I recall, is that some schema is needed
during the install so we need to ship it in ldif format, and the idea of
splitting it didn't appeal to us.
So perhaps what we should endeavor to do is add all new schema via
updates and only update the schema files themselves if the schema is
needed for a fresh install (since updates are done last).
This also puts more schema into 99user.ldif which may or may not be
desirable.
rob
More information about the Freeipa-devel
mailing list