[Freeipa-devel] Automount support
W. Michael Petullo
mike at flyn.org
Mon Apr 7 08:35:29 UTC 2008
>>> Looking forward to the planned automount support, what Fedora package
>>> should own a new autofs schema? /etc/openldap/schema/samba.schema is
>>> owned by the samba package. But (as an example), the samba package does
>>> not provide a schema for Fedora Directory Server.
>>
>> This is probably my fault, we have a schema file for FDS upstream, and
>> now that FDS is in fedora I should probably start putting the schema
>> somewhere, more easily reachable than the docs package I guess ...
>>
>>> The autofs package could provide a schema for FDS, but then it would have
>>> to provide one for OpenLDAP too. FDS itself could provide the schema,
>>> but would we want to set the precedent that FDS provides all possible
>>> schemas? Or should FreeIPA provide the schema? What if someone wanted
>>> to use the schema without installing FreeIPA?
>>>
>>> There are nice directions for FDS / autofs at
>>> http://directory.fedoraproject.org/wiki/Howto:Automount.
>>
>> Imo each package with LDAP support should provide the default schema for
>> the distribution supported Directory Servers. My only question, is where
>> should we put them for FDS ?
>
> I just added an autofs bug to Fedora's Bugzilla. See
> https://bugzilla.redhat.com/show_bug.cgi?id=441026 .
The maintainer of the Fedora autofs package has come up with some good
reasons why the autofs package should not install the autofs schema. To
summarize:
- It is inappropriate for the autofs package to change the LDAP
configuration in any way on production systems.
- It is inappropriate for autofs to add schema files at the location
a directory server stores its schema files as that location may change
without warning.
- Autofs is more of a client system and might not be installed on an
LDAP server.
So, perhaps the schema should be installed by fedora-ds-base? I suppose
we could even make a fedora-ds-schema-autofs package. Again, the
purpose of this would be to avoid including every possible schema in
fedora-ds-base. But, this may be overkill.
Mike
More information about the Freeipa-devel
mailing list