## ## schema file for OpenLDAP 2.0.x ## Schema for storing institute student and staff information in LDAP ## OIDs are owned by the ICT Department of HKIVE(TY). ## ## Prerequisite schemas - uid & uidNumber (nis.schema) ## ## 1.3.6.1.4.1.11400.2.1.x - attributetypes ## 1.3.6.1.4.1.11400.2.2.x - objectclasses ## ## This is taken directly from the VTC schema in ldap.vtc.edu.hk, ## with minor modifications ## Nick Urbanik # Integer attributetype ( 1.3.6.1.4.1.11400.2.1.1 NAME 'academicYear' DESC 'The year the student is currently enrolled, e.g., 2001' EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) # ORDERING numericStringOrderingMatch # This looks like an uneccessary duplication of uid # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.2 NAME 'acOwner' DESC 'Students name' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.3 NAME 'acType' DESC 'Whether student or staff or... Can be STF or STU (matching vtc usage)' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # This seems to be intended as a password hint. # but I guess it could be input from the student... attributetype ( 1.3.6.1.4.1.11400.2.1.4 NAME 'answer1' DESC 'First response to password hint' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.5 NAME 'answer2' DESC 'Second response to password hint' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.6 NAME 'answer3' DESC 'Third response to password hint' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # Not used apparently in the public area of VTC ldap server: # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.7 NAME 'award' DESC 'The qualification of our alumni' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ) # Not really sure quite what they do with this: # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.8 NAME 'batchUpdateFlag' DESC 'Indicate that the entry has been updated. Value is T or F' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.9 NAME 'classCode' DESC 'The class a student is in.' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.10 NAME 'course' DESC 'The course a student is in.' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.11 NAME 'courseDuration' DESC 'How long the course lasts normally.' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # Note that it's not 100% silly to have a department here; # imagine if we cooperate with MIT... # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.12 NAME 'department' DESC 'The department a student is in.' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.13 NAME 'FinalYear' DESC 'Either T or F.' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.14 NAME 'registrationDate' DESC 'Date the student registered, e.g., 17-08-2001' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.15 NAME 'site' DESC 'name of campus, e.g., TY, CW, ST' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # Integer attributetype ( 1.3.6.1.4.1.11400.2.1.16 NAME 'year' DESC 'In what year is the student currently enrolled, e.g., 2' EQUALITY numericStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.17 NAME 'fullPartTime' DESC 'Has value P if student is part time, F if student is full time, B if student is enrolled in both' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.18 NAME 'titleDes' DESC 'The job title of an employee of the instititute' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # directoryString UTF-8 string attributetype ( 1.3.6.1.4.1.11400.2.1.19 NAME 'employerID' DESC 'The ID of an employee of the instititute, possibly an employee number, may contain letters.' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) # IA5String ASCII string attributetype ( 1.3.6.1.4.1.11400.2.1.20 NAME 'instituteEmail' DESC 'email address that is set by the institute, and cannot be changed by the user' EQUALITY caseIgnoreIA5Match SUBSTR caseIgnoreIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} SINGLE-VALUE ) objectclass ( 1.3.6.1.4.1.11400.2.2.1 NAME 'institute' SUP top AUXILIARY DESC 'Any person in the institute, staff or student' MAY ( acOwner $ acType $ answer1 $ answer2 $ answer3 $ batchUpdateFlag $ department $ site $ instituteEmail ) ) objectclass ( 1.3.6.1.4.1.11400.2.2.2 NAME 'student' SUP top AUXILIARY DESC 'A student in the institute' MAY ( academicYear $ award $ classCode $ course $ courseDuration $ FinalYear $ registrationDate $ year $ fullPartTime ) ) objectclass ( 1.3.6.1.4.1.11400.2.2.3 NAME 'staff' SUP top AUXILIARY DESC 'A staff member of the insitute.' MAY ( titleDes $ employerID ) )