sso.schema 1.93 KB
Newer Older
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
#=======================================
# Schema for advanced SSO access rules
# 
# Designed for OpenLDAP software
#   http://www.openldap.org
#
# Part of LemonLDAP::NG project
#   http://lemonldap.ow2.org
#
# Author: Clement OUDOT
#=======================================

#=======================================
# OID Prefix
#   Registered in IANA database
#=======================================
objectIdentifier SSOOID 1.3.6.1.4.1.10943.10.2

#=======================================
# Attributes
#=======================================

# Application Name
attributetype ( SSOOID:1.1
	NAME 'ssoName'
	DESC 'Application names'
	EQUALITY caseIgnoreMatch
	SUBSTR caseIgnoreSubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
 
# Roles
attributetype ( SSOOID:1.2
	NAME 'ssoRoles'
	DESC 'Application roles'
	EQUALITY caseIgnoreMatch
	SUBSTR caseIgnoreSubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

# Logon hours
attributetype ( SSOOID:1.3
	NAME 'ssoLogonHours'
	DESC 'Day and hours of connection'
	EQUALITY caseIgnoreMatch
	SUBSTR caseIgnoreSubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

# Start date
attributetype ( SSOOID:1.4
	NAME 'ssoStartDate'
	DESC 'Start date'
	EQUALITY caseIgnoreMatch
	SUBSTR caseIgnoreSubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

# End date
attributetype ( SSOOID:1.5
	NAME 'ssoEndDate'
	DESC 'End date'
	EQUALITY caseIgnoreMatch
	SUBSTR caseIgnoreSubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

# Keystore
attributetype ( SSOOID:1.6
	NAME 'ssoKeyStore'
	DESC 'KeyStore for credentials'
	EQUALITY caseIgnoreMatch
	SUBSTR caseIgnoreSubstringsMatch
	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )


#=======================================
# ObjectClasses
#=======================================

# SSO user
objectClass ( SSOOID:2.1
	NAME 'ssoUser'
	DESC 'SSO extended informations for a user'
	SUP top
	AUXILIARY
	MAY ( ssoName $ ssoRoles $ ssoLogonHours $ 
	ssoStartDate $ ssoEndDate $ ssoKeyStore ) )