Remove unsed files

docker-compose/test/.gitignore

@@ -1,3 +0,0 @@
-mysql
-limesurvey
-owncloud

docker-compose/test/docker-compose.yml

@@ -1,71 +0,0 @@
-version: "2"
-
-services:
-
-  mysql:
-    image: mysql
-    container_name: mysql
-    volumes:
-      - ./mysql:/var/lib/mysql
-    environment:
-      - MYSQL_ROOT_PASSWORD=password
-    ports:
-      - "3306:3306"
-
-  andrea-openldap:
-    image: andrea/openldap
-    build: ./images/openldap
-      
-  openldap:
-    image: karmen-openldap
-    build: ./images/karmen-openldap
-    container_name: openldap
-    tty: true
-    stdin_open: true
-    volumes:
-      - ./openldap/ldap:/var/lib/ldap
-      - ./openldap/slapd.d:/etc/ldap/slapd.d
-      - ./openldap/certs:/container/service/slapd/assets/certs/
-    ports:
-      - "389:389"
-      - "636:636"
-    domainname: "foo.org" # important: same as hostname
-    hostname: "foo.org"
-    
-  phpldapadmin:
-    image: osixia/phpldapadmin:latest
-    container_name: phpldapadmin
-    environment:
-      PHPLDAPADMIN_LDAP_HOSTS: "openldap"
-      PHPLDAPADMIN_HTTPS: "false"
-    ports:
-      - "8080:80"
-    depends_on:
-      - openldap  
-
-  limesurvey:
-    restart: always
-    image: crramirez/limesurvey:latest
-    container_name: limesurvey
-    volumes:
-      - ./limesurvey/data:/var/lib/mysql
-      - ./limesurvey/upload:/app/upload
-    ports:
-      - 8081:80
-    
-  owncloud:
-    restart: always
-    image: owncloud
-    container_name: owncloud
-    volumes:
-      - ./owncloud/config:/var/www/html/config
-      - ./owncloud/data:/var/www/html/data
-    ports:
-      - 8082:80
-
-  compiler:
-    container_name: compiler
-    image: karmen/compiler
-    ports:
-      - 8083:8080
-      

docker-compose/test/images/karmen-openldap/Dockerfile

@@ -1,6 +0,0 @@
-FROM andrea/openldap
-MAINTAINER Andrea Fazzi <posta@andreafazzi.eu>
-
-ADD bootstrap /container/service/slapd/assets/config/bootstrap
-ADD certs /container/service/slapd/assets/certs
-ADD environment /container/environment/01-custom

docker-compose/test/images/karmen-openldap/Makefile

@@ -1,12 +0,0 @@
-NAME = osixia/extend-osixia-openldap
-VERSION = 0.1.0
-
-.PHONY: all build build-nocache
-
-all: build
-
-build:
-	docker build -t $(NAME):$(VERSION) --rm .
-
-build-nocache:
-	docker build -t $(NAME):$(VERSION) --no-cache --rm .

docker-compose/test/images/karmen-openldap/bootstrap/schema/postfix-dovecot.schema

@@ -1,114 +0,0 @@
-# $Id$
-#
-# OpenLDAP Experimental
-# Private Enterprise Number: 4203
-#
-# OID prefix: 1.3.6.1.4.1.4203
-#
-# Attributes: 1.3.6.1.4.1.4203.666.1.2xx
-#
-#
-# mailAcceptingGeneralId = mail (generally it is a virtual mail / alias)
-#
-#attributetype ( 1.3.6.1.4.1.4203.666.1.200 NAME 'mailAcceptingGeneralId'
-#        EQUALITY caseIgnoreIA5Match
-#        SUBSTR caseIgnoreIA5SubstringsMatch
-#        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.201 NAME 'mailBox'
-        DESC 'Postfix: fully qualified mail address (RFC822 Mailbox)'
-        EQUALITY caseIgnoreIA5Match
-        SUBSTR caseIgnoreIA5SubstringsMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.202 NAME 'mailGroupMemberDN'
-	DESC 'Postfix: DN of the postfixAccount or postfixVirtualAccount'
-        EQUALITY distinguishedNameMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.203 NAME 'mailGroupMemberAddress'
-	DESC 'Postfix: group member email address'
-        EQUALITY caseIgnoreIA5Match
-        SUBSTR caseIgnoreIA5SubstringsMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.204 NAME 'mailUidNumber'
-        DESC 'Dovecot: virtual UID required to access the mailbox'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.205 NAME 'mailGidNumber'
-        DESC 'Dovecot: virtual GID required to access the mailbox'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.206 NAME 'mailPassword'
-        DESC 'Dovecot: virtual password required to access the mailbox'
-        EQUALITY octetStringMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.40{128} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.207 NAME 'mailHomeDirectory'
-	DESC 'Dovecot: home variable (absolute path to the mail user home)'
-        EQUALITY caseExactIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.208 NAME 'mailLocation'
-	DESC 'Dovecot: mail location variable (absolute or relative path)'
-        EQUALITY caseExactIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.209 NAME 'mailDisabled'
-	DESC 'Dovecot: fail field (any value indicates account inactivity)'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{1} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.210 NAME 'mailNoPassword'
-	DESC 'Dovecot: nopassword field (any value avoids mailPassword)'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{1} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.4203.666.1.211 NAME 'mailQuota'
-	DESC 'Dovecot: mail quota limit in kilobytes'
-        EQUALITY caseExactIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-# TODO: add attributes for the rest Dovecot LDAP query fields
-#
-
-#
-# Objects: 1.3.6.1.4.1.4203.666.1.1xx
-#
-
-objectclass ( 1.3.6.1.4.1.4203.666.1.100 NAME 'postfixAccount'
-        SUP top AUXILIARY
-	DESC 'Postfix mail account identifier'
-	MUST ( mail )
-        MAY ( mailBox $ mailUidNumber $ mailGidNumber $ mailPassword
-		$ mailHomeDirectory $ mailLocation
-		$ mailDisabled $ mailNoPassword ) )
-
-objectclass ( 1.3.6.1.4.1.4203.666.1.101 NAME 'postfixGroup'
-        SUP top AUXILIARY
-	DESC 'Postfix group identifier'
-	MUST ( mailGroupMemberDN $ mailGroupMemberAddress )
-	MAY ( mail $ mailBox ) )
-
-objectclass ( 1.3.6.1.4.1.4203.666.1.102 NAME 'postfixVirtualAccount'
-        SUP top
-	DESC 'Standalone Postfix mail account'
-	MUST ( cn $ mail )
-        MAY ( mailBox $ mailUidNumber $ mailGidNumber $ mailPassword
-		$ mailHomeDirectory $ mailLocation
-		$ mailDisabled $ mailNoPassword ) )
-
-objectclass ( 1.3.6.1.4.1.4203.666.1.103 NAME 'postfixVirtualGroup'
-        SUP top
-	DESC 'Standalone Postfix group'
-	MUST ( cn $ mailGroupMemberDN $ mailGroupMemberAddress )
-	MAY ( mail $ mailBox ) )
-
-objectclass ( 1.3.6.1.4.1.4203.666.1.104 NAME 'postfixMailList'
-        SUP top
-	DESC 'Postfix mail list'
-	MUST ( cn $ mail $ mailBox ) )
-

docker-compose/test/images/karmen-openldap/certs/ca.crt

@@ -1,18 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIC0zCCAlmgAwIBAgIUCfQ+m0pgZ/BjYAJvxrn/bdGNZokwCgYIKoZIzj0EAwMw
-gZYxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxBMUEgQ2FyIFdhc2gxJDAiBgNVBAsT
-G0luZm9ybWF0aW9uIFRlY2hub2xvZ3kgRGVwLjEUMBIGA1UEBxMLQWxidXF1ZXJx
-dWUxEzARBgNVBAgTCk5ldyBNZXhpY28xHzAdBgNVBAMTFmRvY2tlci1saWdodC1i
-YXNlaW1hZ2UwHhcNMTUxMjIzMTM1MzAwWhcNMjAxMjIxMTM1MzAwWjCBljELMAkG
-A1UEBhMCVVMxFTATBgNVBAoTDEExQSBDYXIgV2FzaDEkMCIGA1UECxMbSW5mb3Jt
-YXRpb24gVGVjaG5vbG9neSBEZXAuMRQwEgYDVQQHEwtBbGJ1cXVlcnF1ZTETMBEG
-A1UECBMKTmV3IE1leGljbzEfMB0GA1UEAxMWZG9ja2VyLWxpZ2h0LWJhc2VpbWFn
-ZTB2MBAGByqGSM49AgEGBSuBBAAiA2IABMZf/12pupAgl8Sm+j8GmjNeNbSFAZWW
-oTmIvf2Mu4LWPHy4bTldkQgHUbBpT3xWz8f0lB/ru7596CHsGoL2A28hxuclq5hb
-Ux1yrIt3bJIY3TuiX25HGTe6kGCJPB1aLaNmMGQwDgYDVR0PAQH/BAQDAgEGMBIG
-A1UdEwEB/wQIMAYBAf8CAQIwHQYDVR0OBBYEFE+l6XolXDAYnGLTl4W6ULKHrm74
-MB8GA1UdIwQYMBaAFE+l6XolXDAYnGLTl4W6ULKHrm74MAoGCCqGSM49BAMDA2gA
-MGUCMQCXLZj8okyxW6UTL7hribUUbu63PbjuwIXnwi420DdNsvA9A7fcQEXScWFL
-XAGC8rkCMGcqwXZPSRfwuI9r+R11gTrP92hnaVxs9sjRikctpkQpOyNlIXFPopFK
-8FdfWPypvA==
------END CERTIFICATE-----

docker-compose/test/images/karmen-openldap/certs/cert.crt

@@ -1,18 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIC8TCCAnegAwIBAgIIXM3vfP16npQwCgYIKoZIzj0EAwMwgZYxCzAJBgNVBAYT
-AlVTMRUwEwYDVQQKEwxBMUEgQ2FyIFdhc2gxJDAiBgNVBAsTG0luZm9ybWF0aW9u
-IFRlY2hub2xvZ3kgRGVwLjEUMBIGA1UEBxMLQWxidXF1ZXJxdWUxEzARBgNVBAgT
-Ck5ldyBNZXhpY28xHzAdBgNVBAMTFmRvY2tlci1saWdodC1iYXNlaW1hZ2UwHhcN
-MTYwMTEwMDk1OTAwWhcNMTcwMTA5MDk1OTAwWjCBjDELMAkGA1UEBhMCVVMxFTAT
-BgNVBAoTDEExQSBDYXIgV2FzaDEkMCIGA1UECxMbSW5mb3JtYXRpb24gVGVjaG5v
-bG9neSBEZXAuMRQwEgYDVQQHEwtBbGJ1cXVlcnF1ZTETMBEGA1UECBMKTmV3IE1l
-eGljbzEVMBMGA1UEAxMMZTNkMTNlZmQ5YjMxMHYwEAYHKoZIzj0CAQYFK4EEACID
-YgAElkKdHmSbyRwpEGkaMW4Hq9XHpEWLnet7mkqpigQMCMNhuUKLThKYWOm8ZLK3
-Yo21jeb/dXF2LiXgd/Jjaenas3KXkb/FMJESQVTvZ3dwcQwOgyEpCTbjs2GSbiK7
-1JuNo4GZMIGWMA4GA1UdDwEB/wQEAwIAoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI
-KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUtXICfw5YqIkZi83qxOpB
-P5UaHXcwHwYDVR0jBBgwFoAUT6XpeiVcMBicYtOXhbpQsoeubvgwFwYDVR0RBBAw
-DoIMZTNkMTNlZmQ5YjMxMAoGCCqGSM49BAMDA2gAMGUCMQC20jjmVWusnspeGSOr
-Yk+pWNdbTKzNLaU8mR3X2gCs07xrws6cFJBdx/lx8KxE05YCMEaD5kdea/HkaBzy
-5xJZJAuIMpj56AR3J4od9aa3x74NDpgOObRDc4Y7ErAWqjsf3A==
------END CERTIFICATE-----

docker-compose/test/images/karmen-openldap/certs/cert.key

@@ -1,6 +0,0 @@
------BEGIN EC PRIVATE KEY-----
-MIGkAgEBBDAXhGbcS1lHXUJ6cvJZHlm/nHmjJ+wzj+REhgIlQUhf+mDELlwgJEJo
-Hnag8Ow0xMygBwYFK4EEACKhZANiAASWQp0eZJvJHCkQaRoxbger1cekRYud63ua
-SqmKBAwIw2G5QotOEphY6bxksrdijbWN5v91cXYuJeB38mNp6dqzcpeRv8UwkRJB
-VO9nd3BxDA6DISkJNuOzYZJuIrvUm40=
------END EC PRIVATE KEY-----

docker-compose/test/images/karmen-openldap/certs/dhparam.pem

@@ -1,8 +0,0 @@
------BEGIN DH PARAMETERS-----
-MIIBCAKCAQEA7adhygsX/CvbcQBlSEKBmm0D0+hVfIttcftyFTuDPNok4yDJUBUF
-zzc7X/i3PUMzANhShBrngBaXbOhVk3QcjMC623TPhFmILx0r236+aQEUGnlwN73M
-RUFM6EblYgH4+E4nv+JLwzHdO72+qMAd92rtzVMiaDlCWghH6wdAFoasTsT6Posc
-F5T8WCkzFAZeVhNGRKPP6k3l2BjvRJzkwYMMJrxaIYznMEK6H5CYIqZcpeAB3d2B
-NaZXLxFCemLrSS16UHrH1modEe8yjrOaE5+ZesGAA9onsNRZkAJp0x/pRaO/+rHn
-Q5QVCQCzxY16UsLzH0q/P80xPMU7BMoocwIBAg==
------END DH PARAMETERS-----

docker-compose/test/images/karmen-openldap/environment/my-env.startup.yaml

@@ -1,45 +0,0 @@
-# This is the default image startup configuration file
-# this file define environment variables used during the container **first start** in **startup files**.
-
-# This file is deleted right after startup files are processed for the first time,
-# after that all these values will not be available in the container environment.
-# This helps to keep your container configuration secret.
-# more information : https://github.com/osixia/docker-light-baseimage
-
-# Required and used for new ldap server only
-LDAP_ORGANISATION: Foo Inc.
-LDAP_DOMAIN: foo.org
-LDAP_ADMIN_PASSWORD: admin
-LDAP_CONFIG_PASSWORD: config
-
-LDAP_READONLY_USER: true
-LDAP_READONLY_USER_USERNAME: readonly
-LDAP_READONLY_USER_PASSWORD: passwr0rd!
-
-# Tls
-#LDAP_TLS: true
-#LDAP_TLS_CRT_FILENAME: cert.crt
-#LDAP_TLS_KEY_FILENAME: cert.key
-#LDAP_TLS_CA_CRT_FILENAME: ca.crt
-
-#LDAP_TLS_ENFORCE: false
-#LDAP_TLS_CIPHER_SUITE: SECURE256:+SECURE128:-VERS-TLS-ALL:+VERS-TLS1.2:-RSA:-DHE-DSS:-CAMELLIA-128-CBC:-CAMELLIA-256-CBC
-#LDAP_TLS_VERIFY_CLIENT: never
-
-# Replication
-LDAP_REPLICATION: false
-# variables $LDAP_BASE_DN, $LDAP_ADMIN_PASSWORD, $LDAP_CONFIG_PASSWORD
-# are automaticaly replaced at run time
-
-# if you want to add replication to an existing ldap
-# adapt LDAP_REPLICATION_CONFIG_SYNCPROV and LDAP_REPLICATION_DB_SYNCPROV to your configuration
-# avoid using $LDAP_BASE_DN, $LDAP_ADMIN_PASSWORD and $LDAP_CONFIG_PASSWORD variables
-LDAP_REPLICATION_CONFIG_SYNCPROV: binddn="cn=admin,cn=config" bindmethod=simple credentials=$LDAP_CONFIG_PASSWORD searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1 starttls=critical
-LDAP_REPLICATION_DB_SYNCPROV: binddn="cn=admin,$LDAP_BASE_DN" bindmethod=simple credentials=$LDAP_ADMIN_PASSWORD searchbase="$LDAP_BASE_DN" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1 starttls=critical
-LDAP_REPLICATION_HOSTS:
-  - ldap://ldap.example.org # The order must be the same on all ldap servers
-  - ldap://ldap2.example.org
-
-
-# Remove config after setup
-LDAP_REMOVE_CONFIG_AFTER_SETUP: false

docker-compose/test/images/karmen-openldap/environment/my-env.yaml

@@ -1,10 +0,0 @@
-# This is the default image configuration file
-# These values will persists in container environment.
-
-# All environment variables used after the container first start
-# must be defined here.
-# more information : https://github.com/osixia/docker-light-baseimage
-
-# General container configuration
-# see table 5.1 in http://www.openldap.org/doc/admin24/slapdconf2.html for the available log levels.
-LDAP_LOG_LEVEL: 256

docker-compose/test/images/openldap/Dockerfile

@@ -1,38 +0,0 @@
-# Use osixia/light-baseimage
-# sources: https://github.com/osixia/docker-light-baseimage
-FROM osixia/light-baseimage:1.1.0
-MAINTAINER Bertrand Gouny <bertrand.gouny@osixia.net>
-
-# Add openldap user and group first to make sure their IDs get assigned consistently, regardless of whatever dependencies get added
-RUN groupadd -r openldap && useradd -r -g openldap openldap
-
-# Install OpenLDAP, ldap-utils and ssl-tools from baseimage and clean apt-get files
-# sources: https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/add-service-available
-#          https://github.com/osixia/docker-light-baseimage/blob/stable/image/service-available/:ssl-tools/download.sh
-RUN apt-get -y update \
-    && /container/tool/add-service-available :ssl-tools \
-	  && LC_ALL=C DEBIAN_FRONTEND=noninteractive apt-get install -y --no-install-recommends \
-       ldap-utils \
-       libsasl2-modules \
-       libsasl2-modules-db \
-       libsasl2-modules-gssapi-mit \
-       libsasl2-modules-ldap \
-       libsasl2-modules-otp \
-       libsasl2-modules-sql \
-       openssl \
-       slapd \
-    && apt-get clean \
-    && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
-
-# Add service directory to /container/service
-ADD service /container/service
-
-# Use baseimage install-service script
-# https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/install-service
-RUN /container/tool/install-service
-
-# Add default env variables
-ADD environment /container/environment/99-default
-
-# Expose default ldap and ldaps ports
-EXPOSE 389 636

docker-compose/test/images/openldap/environment/default.startup.yaml

@@ -1,62 +0,0 @@
-# This is the default image startup configuration file
-# this file define environment variables used during the container **first start** in **startup files**.
-
-# This file is deleted right after startup files are processed for the first time,
-# after that all these values will not be available in the container environment.
-# This helps to keep your container configuration secret.
-# more information : https://github.com/osixia/docker-light-baseimage
-
-# Required and used for new ldap server only
-LDAP_ORGANISATION: Example Inc.
-LDAP_DOMAIN: example.org
-LDAP_BASE_DN: #if empty automatically set from LDAP_DOMAIN
-
-LDAP_ADMIN_PASSWORD: admin
-LDAP_CONFIG_PASSWORD: config
-
-LDAP_READONLY_USER: false
-LDAP_READONLY_USER_USERNAME: readonly
-LDAP_READONLY_USER_PASSWORD: readonly
-
-LDAP_RFC2307BIS_SCHEMA: false
-
-# Backend
-LDAP_BACKEND: hdb
-
-# Tls
-LDAP_TLS: true
-LDAP_TLS_CRT_FILENAME: ldap.crt
-LDAP_TLS_KEY_FILENAME: ldap.key
-LDAP_TLS_CA_CRT_FILENAME: ca.crt
-
-LDAP_TLS_ENFORCE: false
-LDAP_TLS_CIPHER_SUITE: SECURE256:+SECURE128:-VERS-TLS-ALL:+VERS-TLS1.2:-RSA:-DHE-DSS:-CAMELLIA-128-CBC:-CAMELLIA-256-CBC
-LDAP_TLS_VERIFY_CLIENT: demand
-
-# Replication
-LDAP_REPLICATION: false
-# variables $LDAP_BASE_DN, $LDAP_ADMIN_PASSWORD, $LDAP_CONFIG_PASSWORD
-# are automaticaly replaced at run time
-
-# if you want to add replication to an existing ldap
-# adapt LDAP_REPLICATION_CONFIG_SYNCPROV and LDAP_REPLICATION_DB_SYNCPROV to your configuration
-# avoid using $LDAP_BASE_DN, $LDAP_ADMIN_PASSWORD and $LDAP_CONFIG_PASSWORD variables
-LDAP_REPLICATION_CONFIG_SYNCPROV: binddn="cn=admin,cn=config" bindmethod=simple credentials=$LDAP_CONFIG_PASSWORD searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1 starttls=critical
-LDAP_REPLICATION_DB_SYNCPROV: binddn="cn=admin,$LDAP_BASE_DN" bindmethod=simple credentials=$LDAP_ADMIN_PASSWORD searchbase="$LDAP_BASE_DN" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1 starttls=critical
-LDAP_REPLICATION_HOSTS:
-  - ldap://ldap.example.org # The order must be the same on all ldap servers
-  - ldap://ldap2.example.org
-
-# Do not change the ldap config
-# - If set to true with an existing database, config will remain unchanged. Image tls and replication config will not be run.
-#   The container can be started with LDAP_ADMIN_PASSWORD and LDAP_CONFIG_PASSWORD empty or filled with fake data.
-# - If set to true when bootstrapping a new database, bootstap ldif and schema will not be added and tls and replication config will not be run.
-KEEP_EXISTING_CONFIG: false
-
-# Remove config after setup
-LDAP_REMOVE_CONFIG_AFTER_SETUP: true
-
-# ssl-helper environment variables prefix
-LDAP_SSL_HELPER_PREFIX: ldap # ssl-helper first search config from LDAP_SSL_HELPER_* variables, before SSL_HELPER_* variables.
-
-SSL_HELPER_AUTO_RENEW_SERVICES_IMPACTED: slapd

docker-compose/test/images/openldap/environment/default.yaml

@@ -1,10 +0,0 @@
-# This is the default image configuration file
-# These values will persists in container environment.
-
-# All environment variables used after the container first start
-# must be defined here.
-# more information : https://github.com/osixia/docker-light-baseimage
-
-# General container configuration
-# see table 5.1 in http://www.openldap.org/doc/admin24/slapdconf2.html for the available log levels.
-LDAP_LOG_LEVEL: 256

docker-compose/test/images/openldap/service/slapd/assets/certs/README.md

@@ -1,2 +0,0 @@
-Add your tls server certificate, key and the CA certificate (if any) here
-or during docker run mount a data volume with those files to /container/service/slapd/assets/certs

docker-compose/test/images/openldap/service/slapd/assets/certs/dhparam.pem

@@ -1,8 +0,0 @@
------BEGIN DH PARAMETERS-----
-MIIBCAKCAQEA7adhygsX/CvbcQBlSEKBmm0D0+hVfIttcftyFTuDPNok4yDJUBUF
-zzc7X/i3PUMzANhShBrngBaXbOhVk3QcjMC623TPhFmILx0r236+aQEUGnlwN73M
-RUFM6EblYgH4+E4nv+JLwzHdO72+qMAd92rtzVMiaDlCWghH6wdAFoasTsT6Posc
-F5T8WCkzFAZeVhNGRKPP6k3l2BjvRJzkwYMMJrxaIYznMEK6H5CYIqZcpeAB3d2B
-NaZXLxFCemLrSS16UHrH1modEe8yjrOaE5+ZesGAA9onsNRZkAJp0x/pRaO/+rHn
-Q5QVCQCzxY16UsLzH0q/P80xPMU7BMoocwIBAg==
------END DH PARAMETERS-----

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/README.md

@@ -1 +0,0 @@
-Bootstrap config, for a container started without an existing ldap config.

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/01-config-password.ldif

@@ -1,7 +0,0 @@
-# Set config password
-dn: cn=config
-changeType: modify
-
-dn: olcDatabase={0}config,cn=config
-add: olcRootPW
-olcRootPW: {{ LDAP_CONFIG_PASSWORD_ENCRYPTED }}

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/02-security.ldif

@@ -1,7 +0,0 @@
-dn: olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: modify
-delete: olcAccess
--
-add: olcAccess
-olcAccess: to attrs=userPassword,shadowLastChange by self write by dn="cn=admin,{{ LDAP_BASE_DN }}" write by anonymous auth by * none
-olcAccess: to * by self write by dn="cn=admin,{{ LDAP_BASE_DN }}" write by * none

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/03-memberOf.ldif

@@ -1,17 +0,0 @@
-# Load memberof module
-dn: cn=module{0},cn=config
-changetype: modify
-add: olcModuleLoad
-olcModuleLoad: memberof
-
-# Backend memberOf overlay
-dn: olcOverlay={0}memberof,olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: add
-objectClass: olcOverlayConfig
-objectClass: olcMemberOf
-olcOverlay: {0}memberof
-olcMemberOfDangling: ignore
-olcMemberOfRefInt: TRUE
-olcMemberOfGroupOC: groupOfUniqueNames
-olcMemberOfMemberAD: uniqueMember
-olcMemberOfMemberOfAD: memberOf

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/04-refint.ldif

@@ -1,17 +0,0 @@
-# Load refint module
-dn: cn=module{0},cn=config
-changetype: modify
-add: olcModuleLoad
-olcModuleLoad: refint
-
-# Backend refint overlay
-dn: olcOverlay={1}refint,olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: add
-objectClass: olcOverlayConfig
-objectClass: olcRefintConfig
-olcOverlay: {1}refint
-olcRefintAttribute: owner
-olcRefintAttribute: manager
-olcRefintAttribute: uniqueMember
-olcRefintAttribute: member
-olcRefintAttribute: memberOf

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/05-index.ldif

@@ -1,10 +0,0 @@
-# Add indexes
-dn: olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype:  modify
-replace: olcDbIndex
-olcDbIndex: uid eq
-olcDbIndex: mail eq
-olcDbIndex: memberOf eq
-olcDbIndex: entryCSN eq
-olcDbIndex: entryUUID eq
-olcDbIndex: objectClass eq

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/custom/README.md

@@ -1,9 +0,0 @@
-Add your custom ldif files here if you don't want to overwrite image default boostrap ldif.
-at run time you can also mount a data volume with your ldif files to /container/service/slapd/assets/config/bootstrap/ldif/custom
-
-The startup script provide some substitution in bootstrap ldif files:
-`{{LDAP_BASE_DN }}` and `{{ LDAP_BACKEND }}` values are supported.
-Other `{{ * }}` substitution are left as is.
-
-Since startup script modifies `ldif` files,
-you **must** add `--copy-service` argument to entrypoint if you don't want to overwrite them.

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user-acl.ldif

@@ -1,7 +0,0 @@
-dn: olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: modify
-delete: olcAccess
--
-add: olcAccess
-olcAccess: to attrs=userPassword,shadowLastChange by self write by dn="cn=admin,{{ LDAP_BASE_DN }}" write by anonymous auth by * none
-olcAccess: to * by self write by dn="cn=admin,{{ LDAP_BASE_DN }}" write by dn="cn={{ LDAP_READONLY_USER_USERNAME }},{{ LDAP_BASE_DN }}" read by * none

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user.ldif

@@ -1,7 +0,0 @@
-dn: cn={{ LDAP_READONLY_USER_USERNAME }},{{ LDAP_BASE_DN }}
-changetype: add
-cn: {{ LDAP_READONLY_USER_USERNAME }}
-objectClass: simpleSecurityObject
-objectClass: organizationalRole
-userPassword: {{ LDAP_READONLY_USER_PASSWORD_ENCRYPTED }}
-description: LDAP read only user

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/README.md

@@ -1 +0,0 @@
-Bootstrap schemas, for a container started without an existing ldap config.

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/README.md

@@ -1 +0,0 @@
-Mandriva Management Console (MMC) ldap schemas, delete the forlder if not needed ;)

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/dhcp.schema

@@ -1,466 +0,0 @@
-attributetype ( 2.16.840.1.113719.1.203.4.1 
-        NAME 'dhcpPrimaryDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The DN of the dhcpServer which is the primary server for the configuration.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.2 
-        NAME 'dhcpSecondaryDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The DN of dhcpServer(s) which provide backup service for the configuration.'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.3 
-        NAME 'dhcpStatements' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'Flexible storage for specific data depending on what object this exists in. Like conditional statements, server parameters, etc. This allows the standard to evolve without needing to adjust the schema.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.4 
-        NAME 'dhcpRange' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'The starting & ending IP Addresses in the range (inclusive), separated by a hyphen; if the range only contains one address, then just the address can be specified with no hyphen.  Each range is defined as a separate value.'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.5 
-        NAME 'dhcpPermitList' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'This attribute contains the permit lists associated with a pool. Each permit list is defined as a separate value.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.6 
-        NAME 'dhcpNetMask' 
-        EQUALITY integerMatch
-        DESC 'The subnet mask length for the subnet.  The mask can be easily computed from this length.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.7 
-        NAME 'dhcpOption' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'Encoded option values to be sent to clients.  Each value represents a single option and contains (OptionTag, Length, OptionValue) encoded in the format used by DHCP.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.8 
-        NAME 'dhcpClassData' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'Encoded text string or list of bytes expressed in hexadecimal, separated by colons.  Clients match subclasses based on matching the class data with the results of match or spawn with statements in the class name declarations.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.9 
-        NAME 'dhcpOptionsDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s) of the dhcpOption objects containing the configuration options provided by the server.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.10 
-        NAME 'dhcpHostDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'the distinguished name(s) of the dhcpHost objects.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) 
-
-attributetype ( 2.16.840.1.113719.1.203.4.11 
-        NAME 'dhcpPoolDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s) of pools.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.12 
-        NAME 'dhcpGroupDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s)   of the groups.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.13 
-        NAME 'dhcpSubnetDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s) of the subnets.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.14 
-        NAME 'dhcpLeaseDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name of a client address.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE)
-
-attributetype ( 2.16.840.1.113719.1.203.4.15 
-        NAME 'dhcpLeasesDN' 
-        DESC 'The distinguished name(s) client addresses.' 
-        EQUALITY distinguishedNameMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.16 
-        NAME 'dhcpClassesDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s) of a class(es) in a subclass.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.17 
-        NAME 'dhcpSubclassesDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s) of subclass(es).' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.18 
-        NAME 'dhcpSharedNetworkDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name(s) of sharedNetworks.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.19 
-        NAME 'dhcpServiceDN' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The DN of dhcpService object(s)which contain the configuration information. Each dhcpServer object has this attribute identifying the DHCP configuration(s) that the server is associated with.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.20 
-        NAME 'dhcpVersion'
-        DESC 'The version attribute of this object.'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.21 
-        NAME 'dhcpImplementation' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'Description of the DHCP Server implementation e.g. DHCP Servers vendor.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.22 
-        NAME 'dhcpAddressState' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'This stores information about the current binding-status of an address.  For dynamic addresses managed by DHCP, the values should be restricted to the following: "FREE", "ACTIVE", "EXPIRED", "RELEASED", "RESET", "ABANDONED", "BACKUP".  For other addresses, it SHOULD be one of the following: "UNKNOWN", "RESERVED" (an address that is managed by DHCP that is reserved for a specific client), "RESERVED-ACTIVE" (same as reserved, but address is currently in use), "ASSIGNED" (assigned manually or by some other mechanism), "UNASSIGNED", "NOTASSIGNABLE".'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.23 
-        NAME 'dhcpExpirationTime' 
-        EQUALITY generalizedTimeMatch 
-        DESC 'This is the time the current lease for an address expires.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.24 
-        NAME 'dhcpStartTimeOfState' 
-        EQUALITY generalizedTimeMatch 
-        DESC 'This is the time of the last state change for a leased address.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.25 
-        NAME 'dhcpLastTransactionTime' 
-        EQUALITY generalizedTimeMatch 
-        DESC 'This is the last time a valid DHCP packet was received from the client.'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.26 
-        NAME 'dhcpBootpFlag' 
-        EQUALITY booleanMatch 
-        DESC 'This indicates whether the address was assigned via BOOTP.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.27 
-        NAME 'dhcpDomainName' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'This is the name of the domain sent to the client by the server.  It is essentially the same as the value for DHCP option 15 sent to the client, and represents only the domain - not the full FQDN.  To obtain the full FQDN assigned to the client you must prepend the "dhcpAssignedHostName" to this value with a ".".' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.28 
-        NAME 'dhcpDnsStatus' 
-        EQUALITY integerMatch
-        DESC 'This indicates the status of updating DNS resource records on behalf of the client by the DHCP server for this address.  The value is a 16-bit bitmask.'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.29 
-        NAME 'dhcpRequestedHostName' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'This is the hostname that was requested by the client.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.30 
-        NAME 'dhcpAssignedHostName' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'This is the actual hostname that was assigned to a client. It may not be the name that was requested by the client.  The fully qualified domain name can be determined by appending the value of "dhcpDomainName" (with a dot separator) to this name.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.31 
-        NAME 'dhcpReservedForClient' 
-        EQUALITY distinguishedNameMatch
-        DESC 'The distinguished name of a "dhcpClient" that an address is reserved for.  This may not be the same as the "dhcpAssignedToClient" attribute if the address is being reassigned but the current lease has not yet expired.'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.32 
-        NAME 'dhcpAssignedToClient' 
-        EQUALITY distinguishedNameMatch
-        DESC 'This is the distinguished name of a "dhcpClient" that an address is currently assigned to.  This attribute is only present in the class when the address is leased.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.33 
-        NAME 'dhcpRelayAgentInfo' 
-        EQUALITY octetStringMatch
-        DESC 'If the client request was received via a relay agent, this contains information about the relay agent that was available from the DHCP request.  This is a hex-encoded option value.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.34 
-        NAME 'dhcpHWAddress' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'The clients hardware address that requested this IP address.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.35 
-        NAME 'dhcpHashBucketAssignment' 
-        EQUALITY octetStringMatch
-        DESC 'HashBucketAssignment bit map for the DHCP Server, as defined in DHC Load Balancing Algorithm [RFC 3074].' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.36 
-        NAME 'dhcpDelayedServiceParameter' 
-        EQUALITY integerMatch
-        DESC 'Delay in seconds corresponding to Delayed Service Parameter configuration, as defined in  DHC Load Balancing Algorithm [RFC 3074]. '
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.37 
-        NAME 'dhcpMaxClientLeadTime' 
-        EQUALITY integerMatch
-        DESC 'Maximum Client Lead Time configuration in seconds, as defined in DHCP Failover Protocol [FAILOVR]' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.38 
-        NAME 'dhcpFailOverEndpointState' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'Server (Failover Endpoint) state, as defined in DHCP Failover Protocol [FAILOVR]' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.39 
-        NAME 'dhcpErrorLog' 
-        EQUALITY caseIgnoreIA5Match
-        DESC 'Generic error log attribute that allows logging error conditions within a dhcpService or a dhcpSubnet, like no IP addresses available for lease.'
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.40 
-        NAME 'dhcpLocatorDN' 
-        EQUALITY distinguishedNameMatch 
-        DESC 'The DN of dhcpLocator object which contain the DNs of all DHCP configuration objects. There will be a single dhcpLocator object in the tree with links to all the DHCP objects in the tree' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype  ( 2.16.840.1.113719.1.203.4.41 
-        NAME 'dhcpKeyAlgorithm' 
-        EQUALITY caseIgnoreIA5Match 
-        DESC 'Algorithm to generate TSIG Key' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype  ( 2.16.840.1.113719.1.203.4.42 
-        NAME 'dhcpKeySecret' 
-        EQUALITY octetStringMatch 
-        DESC 'Secret to generate TSIG Key' SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.43 
-        NAME 'dhcpDnsZoneServer' 
-        EQUALITY caseIgnoreIA5Match 
-        DESC 'Master server of the DNS Zone' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 2.16.840.1.113719.1.203.4.44 
-        NAME 'dhcpKeyDN' 
-        EQUALITY distinguishedNameMatch 
-        DESC 'The DNs of TSIG Key to use in secure dynamic updates. In case of locator object, this will be list of TSIG keys.  In case of DHCP Service, Shared Network, Subnet and DNS Zone, it will be a single key.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
-
-attributetype ( 2.16.840.1.113719.1.203.4.45 
-        NAME 'dhcpZoneDN' 
-        EQUALITY distinguishedNameMatch 
-        DESC 'The DNs of DNS Zone. In case of locator object, this will be list of DNS Zones in the tree. In case of DHCP Service, Shared Network and Subnet, it will be a single DNS Zone.' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12)
-
-attributetype ( 2.16.840.1.113719.1.203.4.46 
-        NAME 'dhcpFailOverRole' 
-        EQUALITY caseIgnoreIA5Match 
-        DESC 'Role of the DHCP Server. Either primary or secondary' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.47 
-        NAME 'dhcpFailOverReceiveAddress' 
-        EQUALITY caseIgnoreIA5Match 
-        DESC 'IP address or DNS  name  on  which the server should listen for connections from its fail over peer' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.48 
-        NAME 'dhcpFailOverPeerAddress' 
-        EQUALITY caseIgnoreIA5Match 
-        DESC 'IP address  or  DNS  name  to which  the  server  should  connect  to  reach  its fail over peer' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.49 
-        NAME 'dhcpFailOverPeerPort' 
-        EQUALITY integerMatch 
-        DESC 'Port to which server should connect to reach its fail over peer' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27  )
-        
-attributetype ( 2.16.840.1.113719.1.203.4.50 
-        NAME 'dhcpFailOverReceivePort' 
-        EQUALITY integerMatch 
-        DESC 'Port on which server should listen for connections from its fail over peer' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.51 
-        NAME 'dhcpFailOverResponseDelay' 
-        EQUALITY integerMatch 
-        DESC 'Maximum response time in seconds, before Server assumes that connection to fail over peer has failed' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.52 
-        NAME 'dhcpFailOverUnpackedUpdates' 
-        EQUALITY integerMatch 
-        DESC 'Number of BNDUPD messages that server can send before it receives BNDACK from its fail over peer' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.53 
-        NAME 'dhcpFailOverSplit' 
-        EQUALITY integerMatch 
-        DESC 'Split between the primary and secondary servers for fail over purpose' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.54 
-        NAME 'dhcpFailOverLoadBalanceTime' 
-        EQUALITY integerMatch 
-        DESC 'Cutoff time in seconds, after which load balance is disabled' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27  )
-
-attributetype ( 2.16.840.1.113719.1.203.4.55 
-        NAME 'dhcpFailOverPeerDN' 
-        EQUALITY distinguishedNameMatch 
-        DESC 'The DNs of Fail over peers. In case of locator object, this will be list of fail over peers in the tree. In case of Subnet and pool, it will be a single Fail Over Peer' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 ) 
-
-#List of all servers in the tree
-attributetype ( 2.16.840.1.113719.1.203.4.56 
-        NAME 'dhcpServerDN' 
-        EQUALITY distinguishedNameMatch 
-        DESC 'List of all  DHCP Servers in the tree. Used by dhcpLocatorObject' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.12 )
-
-attributetype ( 2.16.840.1.113719.1.203.4.57 
-        NAME 'dhcpComments' 
-        EQUALITY caseIgnoreIA5Match 
-        DESC 'Generic attribute that allows coments  within any DHCP object' 
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-# Classes
-
-objectclass ( 2.16.840.1.113719.1.203.6.1 
-        NAME 'dhcpService' 
-        DESC 'Service object that represents the actual DHCP Service configuration. This is a container object.' 
-        SUP top 
-        MUST (cn) 
-        MAY ( dhcpPrimaryDN $ dhcpSecondaryDN $ dhcpServerDN $ dhcpSharedNetworkDN $ dhcpSubnetDN $ dhcpGroupDN $ dhcpHostDN $  dhcpClassesDN $ dhcpOptionsDN $ dhcpZoneDN $ dhcpKeyDN $ dhcpFailOverPeerDN $ dhcpStatements $dhcpComments $ dhcpOption) )
-
-objectclass ( 2.16.840.1.113719.1.203.6.2 
-        NAME 'dhcpSharedNetwork' 
-        DESC 'This stores configuration information for a shared network.' 
-        SUP top 
-        MUST cn 
-        MAY ( dhcpSubnetDN $ dhcpPoolDN $ dhcpOptionsDN $ dhcpZoneDN $ dhcpStatements $dhcpComments $ dhcpOption) X-NDS_CONTAINMENT ('dhcpService' ) )
-
-objectclass ( 2.16.840.1.113719.1.203.6.3 
-        NAME 'dhcpSubnet' 
-        DESC 'This class defines a subnet. This is a container object.' 
-        SUP top 
-        MUST ( cn $ dhcpNetMask ) 
-        MAY ( dhcpRange $ dhcpPoolDN $ dhcpGroupDN $ dhcpHostDN $ dhcpClassesDN $ dhcpLeasesDN $ dhcpOptionsDN $ dhcpZoneDN $ dhcpKeyDN $ dhcpFailOverPeerDN $ dhcpStatements $ dhcpComments $ dhcpOption ) X-NDS_CONTAINMENT ('dhcpService' 'dhcpSharedNetwork') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.4 
-        NAME 'dhcpPool' 
-        DESC 'This stores configuration information about a pool.' 
-        SUP top 
-        MUST ( cn $ dhcpRange ) 
-        MAY ( dhcpClassesDN $ dhcpPermitList $ dhcpLeasesDN $ dhcpOptionsDN $ dhcpZoneDN $dhcpKeyDN $ dhcpStatements $ dhcpComments $ dhcpOption ) 
-        X-NDS_CONTAINMENT ('dhcpSubnet' 'dhcpSharedNetwork') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.5 
-        NAME 'dhcpGroup' 
-        DESC 'Group object that lists host DNs and parameters. This is a container object.' 
-        SUP top 
-        MUST cn 
-        MAY ( dhcpHostDN $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption )
-        X-NDS_CONTAINMENT ('dhcpSubnet' 'dhcpService' ) )
-
-objectclass ( 2.16.840.1.113719.1.203.6.6 
-        NAME 'dhcpHost' 
-        DESC 'This represents information about a particular client' 
-        SUP top 
-        MUST cn 
-        MAY  (dhcpLeaseDN $ dhcpHWAddress $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption) 
-        X-NDS_CONTAINMENT ('dhcpService' 'dhcpSubnet' 'dhcpGroup') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.7 
-        NAME 'dhcpClass' 
-        DESC 'Represents information about a collection of related clients.' 
-        SUP top 
-        MUST cn 
-        MAY (dhcpSubClassesDN $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption) 
-        X-NDS_CONTAINMENT ('dhcpService' 'dhcpSubnet' ) )
-
-objectclass ( 2.16.840.1.113719.1.203.6.8 
-        NAME 'dhcpSubClass' 
-        DESC 'Represents information about a collection of related classes.' 
-        SUP top 
-        MUST cn 
-        MAY (dhcpClassData $ dhcpOptionsDN $ dhcpStatements $ dhcpComments $ dhcpOption) X-NDS_CONTAINMENT 'dhcpClass' )
-
-objectclass ( 2.16.840.1.113719.1.203.6.9 
-        NAME 'dhcpOptions' 
-        DESC 'Represents information about a collection of options defined.' 
-        SUP top AUXILIARY
-        MUST cn 
-        MAY ( dhcpOption $ dhcpComments ) 
-        X-NDS_CONTAINMENT  ('dhcpService' 'dhcpSharedNetwork' 'dhcpSubnet' 'dhcpPool' 'dhcpGroup' 'dhcpHost' 'dhcpClass' ) )
-
-objectclass ( 2.16.840.1.113719.1.203.6.10 
-        NAME 'dhcpLeases' 
-        DESC 'This class represents an IP Address, which may or may not have been leased.' 
-        SUP top 
-        MUST ( cn $ dhcpAddressState ) 
-        MAY ( dhcpExpirationTime $ dhcpStartTimeOfState $ dhcpLastTransactionTime $ dhcpBootpFlag $ dhcpDomainName $ dhcpDnsStatus $ dhcpRequestedHostName $ dhcpAssignedHostName $ dhcpReservedForClient $ dhcpAssignedToClient $ dhcpRelayAgentInfo $ dhcpHWAddress $ dhcpOption ) 
-        X-NDS_CONTAINMENT ( 'dhcpService' 'dhcpSubnet' 'dhcpPool') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.11 
-        NAME 'dhcpLog' 
-        DESC 'This is the object that holds past information about the IP address. The cn is the time/date stamp when the address was assigned or released, the address state at the time, if the address was assigned or released.' 
-        SUP top 
-        MUST ( cn ) 
-        MAY ( dhcpAddressState $ dhcpExpirationTime $ dhcpStartTimeOfState $ dhcpLastTransactionTime $ dhcpBootpFlag $ dhcpDomainName $ dhcpDnsStatus $ dhcpRequestedHostName $ dhcpAssignedHostName $ dhcpReservedForClient $ dhcpAssignedToClient $ dhcpRelayAgentInfo $ dhcpHWAddress $ dhcpErrorLog) 
-        X-NDS_CONTAINMENT ('dhcpLeases' 'dhcpPool' 'dhcpSubnet' 'dhcpSharedNetwork' 'dhcpService' ) )
-
-objectclass ( 2.16.840.1.113719.1.203.6.12 
-        NAME 'dhcpServer' 
-        DESC 'DHCP Server Object' 
-        SUP top 
-        MUST ( cn ) 
-        MAY (dhcpServiceDN  $ dhcpLocatorDN $ dhcpVersion $ dhcpImplementation $ dhcpHashBucketAssignment $ dhcpDelayedServiceParameter $ dhcpMaxClientLeadTime $ dhcpFailOverEndpointState $ dhcpStatements $ dhcpComments $ dhcpOption) 
-        X-NDS_CONTAINMENT ('organization' 'organizationalunit' 'domain') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.13 
-        NAME 'dhcpTSigKey' 
-        DESC 'TSIG key for secure dynamic updates' 
-        SUP top 
-        MUST (cn $ dhcpKeyAlgorithm $ dhcpKeySecret ) 
-        MAY ( dhcpComments ) 
-        X-NDS_CONTAINMENT ('dhcpService' 'dhcpSharedNetwork' 'dhcpSubnet') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.14 
-        NAME 'dhcpDnsZone' 
-        DESC 'DNS Zone for updating leases' 
-        SUP top 
-        MUST (cn $ dhcpDnsZoneServer ) 
-        MAY (dhcpKeyDN $ dhcpComments) 
-        X-NDS_CONTAINMENT ('dhcpService' 'dhcpSharedNetwork' 'dhcpSubnet') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.15 
-        NAME 'dhcpFailOverPeer' 
-        DESC 'This class defines the Fail over peer' 
-        SUP top 
-        MUST ( cn $ dhcpFailOverRole $ dhcpFailOverReceiveAddress $ dhcpFailOverPeerAddress $ dhcpFailoverReceivePort $ dhcpFailOverPeerPort ) MAY ( dhcpFailOverResponseDelay  $ dhcpFailOverUnpackedUpdates $ dhcpMaxClientLeadTime $ dhcpFailOverSplit $ dhcpHashBucketAssignment $ dhcpFailOverLoadBalanceTime $ dhcpComments $ dhcpOption) X-NDS_CONTAINMENT ('dhcpService' 'dhcpSharedNetwork' 'dhcpSubnet') )
-
-objectclass ( 2.16.840.1.113719.1.203.6.16 
-        NAME 'dhcpLocator' 
-        DESC 'Locator object for DHCP configuration in the tree. There will be a single dhcpLocator object in the tree with links to all the DHCP objects in the tree' 
-        SUP top 
-        MUST ( cn ) 
-        MAY ( dhcpServiceDN $dhcpServerDN $ dhcpSharedNetworkDN $ dhcpSubnetDN $ dhcpPoolDN $ dhcpGroupDN $ dhcpHostDN $  dhcpClassesDN $ dhcpKeyDN $ dhcpZoneDN $ dhcpFailOverPeerDN $ dhcpOption $ dhcpComments) 
-        X-NDS_CONTAINMENT ('organization' 'organizationalunit' 'domain') )
-

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/dnszone.schema

@@ -1,155 +0,0 @@
-# A schema for storing DNS zones in LDAP
-#
-attributetype ( 1.3.6.1.4.1.2428.20.0.0  NAME 'dNSTTL'
-    DESC 'An integer denoting time to live'
-    EQUALITY integerMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.0.1 NAME 'dNSClass'
-    DESC 'The class of a resource record'
-    EQUALITY caseIgnoreIA5Match
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.0.2 NAME 'zoneName'
-    DESC 'The name of a zone, i.e. the name of the highest node in the zone'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.0.3 NAME 'relativeDomainName'
-    DESC 'The starting labels of a domain name'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.12 NAME 'pTRRecord'
-    DESC 'domain name pointer, RFC 1035'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.13 NAME 'hInfoRecord'
-    DESC 'host information, RFC 1035'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.14 NAME 'mInfoRecord'
-    DESC 'mailbox or mail list information, RFC 1035'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.16 NAME 'tXTRecord'
-    DESC 'text string, RFC 1035'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.18 NAME 'aFSDBRecord'
-    DESC 'for AFS Data Base location, RFC 1183'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.24 NAME 'SigRecord'
-    DESC 'Signature, RFC 2535'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.25 NAME 'KeyRecord'
-    DESC 'Key, RFC 2535'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.28 NAME 'aAAARecord'
-    DESC 'IPv6 address, RFC 1886'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.29 NAME 'LocRecord'
-    DESC 'Location, RFC 1876'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.30 NAME 'nXTRecord'
-    DESC 'non-existant, RFC 2535'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.33 NAME 'sRVRecord'
-    DESC 'service location, RFC 2782'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.35 NAME 'nAPTRRecord'
-    DESC 'Naming Authority Pointer, RFC 2915'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.36 NAME 'kXRecord'
-    DESC 'Key Exchange Delegation, RFC 2230'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.37 NAME 'certRecord'
-    DESC 'certificate, RFC 2538'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.38 NAME 'a6Record'
-    DESC 'A6 Record Type, RFC 2874'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.39 NAME 'dNameRecord'
-    DESC 'Non-Terminal DNS Name Redirection, RFC 2672'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.43 NAME 'dSRecord'
-    DESC 'Delegation Signer, RFC 3658'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.44 NAME 'sSHFPRecord'
-    DESC 'SSH Key Fingerprint, draft-ietf-secsh-dns-05.txt'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.46 NAME 'rRSIGRecord'
-    DESC 'RRSIG, RFC 3755'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-attributetype ( 1.3.6.1.4.1.2428.20.1.47 NAME 'nSECRecord'
-    DESC 'NSEC, RFC 3755'
-    EQUALITY caseIgnoreIA5Match
-    SUBSTR caseIgnoreIA5SubstringsMatch
-    SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-objectclass ( 1.3.6.1.4.1.2428.20.3 NAME 'dNSZone'
-        SUP top STRUCTURAL
-    MUST ( zoneName $ relativeDomainName )
-        MAY ( DNSTTL $ DNSClass $
-              ARecord $ MDRecord $ MXRecord $ NSRecord $
-          SOARecord $ CNAMERecord $ PTRRecord $ HINFORecord $
-              MINFORecord $ TXTRecord $ AFSDBRecord $ SIGRecord $
-              KEYRecord $ AAAARecord $ LOCRecord $ NXTRecord $
-              SRVRecord $ NAPTRRecord $ KXRecord $ CERTRecord $
-              A6Record $ DNAMERecord $ DSRecord $ SSHFPRecord $
-              RRSIGRecord $ NSECRecord ) )

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/openssh-lpk.schema

@@ -1,19 +0,0 @@
-#
-# LDAP Public Key Patch schema for use with openssh-ldappubkey
-# Author: Eric AUGE <eau@phear.org>
-# 
-# Based on the proposal of : Mark Ruijter
-#
-
-
-# octetString SYNTAX
-attributetype ( 1.3.6.1.4.1.24552.500.1.1.1.13 NAME 'sshPublicKey' 
-	DESC 'MANDATORY: OpenSSH Public key' 
-	EQUALITY octetStringMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
-
-# printableString SYNTAX yes|no
-objectclass ( 1.3.6.1.4.1.24552.500.1.1.2.0 NAME 'ldapPublicKey' SUP top AUXILIARY
-	DESC 'MANDATORY: OpenSSH LPK objectclass'
-	MAY ( sshPublicKey $ uid ) 
-	)

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/quota.schema

@@ -1,29 +0,0 @@
-##
-## schema file for Unix Quotas
-## Schema for storing Unix Quotas in LDAP
-## OIDs are owned by Cogent Innovators, LLC
-##
-## 1.3.6.1.4.1.19937.1.1.x - attributetypes
-## 1.3.6.1.4.1.19937.1.2.x - objectclasses
-##
-
-attributetype ( 1.3.6.1.4.1.19937.1.1.1 NAME 'quota'
-        DESC 'Quotas (FileSystem:BlocksSoft,BlocksHard,InodesSoft,InodesHard)'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} )
-
-attributetype ( 1.3.6.1.4.1.19937.1.1.2 NAME 'networkquota'
-        DESC 'Network Quotas (network,protocol,bytes)'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} )
-
-objectclass ( 1.3.6.1.4.1.19937.1.2.1 NAME 'systemQuotas' SUP posixAccount AUXILIARY
-        DESC 'System Quotas'
-        MUST ( uid )
-        MAY  ( quota $ networkquota ))
-
-objectclass ( 1.3.6.1.4.1.19937.1.2.2 NAME 'defaultQuotas'
-        DESC 'Quota defaults to apply to members of a group'
-        SUP top AUXILIARY
-        MUST ( cn )
-        MAY ( quota $ networkquota ))

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/radius.schema

@@ -1,589 +0,0 @@
-# This is a LDAPv3 schema for RADIUS attributes.
-# Tested on OpenLDAP 2.0.7
-# Posted by Javier Fernandez-Sanguino Pena <jfernandez@sgi.es>
-# LDAP v3 version by Jochen Friedrich <jochen@scram.de>
-# Updates by Adrian Pavlykevych <pam@polynet.lviv.ua>
-##############
-# This version is customized
-# so that the radiusCallingStationId attribute
-# is multi evaluated
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.1
-      NAME 'radiusArapFeatures'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.2
-      NAME 'radiusArapSecurity'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.3
-      NAME 'radiusArapZoneAccess'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.44
-     NAME 'radiusAuthType'
-     DESC 'checkItem: Auth-Type'
-     EQUALITY caseIgnoreIA5Match
-     SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-     SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.4
-      NAME 'radiusCallbackId'
-      DESC 'replyItem: Callback-Id'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.5
-      NAME 'radiusCallbackNumber'
-      DESC 'replyItem: Callback-Number'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.6
-      NAME 'radiusCalledStationId'
-      DESC 'checkItem: Called-Station-Id'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.7
-      NAME 'radiusCallingStationId'
-      DESC 'checkItem: Calling-Station-Id'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.8
-      NAME 'radiusClass'
-      DESC 'replyItem: Class'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.45
-     NAME 'radiusClientIPAddress'
-     DESC ''
-     EQUALITY caseIgnoreIA5Match
-     SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-     SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.9
-      NAME 'radiusFilterId'
-      DESC 'replyItem: Filter-Id'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.10
-      NAME 'radiusFramedAppleTalkLink'
-      DESC 'replyItem: Framed-AppleTalk-Link'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.11
-      NAME 'radiusFramedAppleTalkNetwork'
-      DESC 'replyItem: Framed-AppleTalk-Network'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.12
-      NAME 'radiusFramedAppleTalkZone'
-      DESC 'replyItem: Framed-AppleTalk-Zone'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.13
-      NAME 'radiusFramedCompression'
-      DESC 'replyItem: Framed-Compression'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.14
-      NAME 'radiusFramedIPAddress'
-      DESC 'replyItem: Framed-IP-Address'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.15
-      NAME 'radiusFramedIPNetmask'
-      DESC 'replyItem: Framed-IP-Netmask'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.16
-      NAME 'radiusFramedIPXNetwork'
-      DESC 'replyItem: Framed-IPX-Network'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.17
-      NAME 'radiusFramedMTU'
-      DESC 'replyItem: Framed-MTU'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.18
-      NAME 'radiusFramedProtocol'
-      DESC 'replyItem: Framed-Protocol'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.19
-      NAME 'radiusFramedRoute'
-      DESC 'replyItem: Framed-Route'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.20
-      NAME 'radiusFramedRouting'
-      DESC 'replyItem: Framed-Routing'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.46
-      NAME 'radiusGroupName'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.47
-      NAME 'radiusHint'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.48
-      NAME 'radiusHuntgroupName'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.21
-      NAME 'radiusIdleTimeout'
-      DESC 'replyItem: Idle-Timeout'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.22
-      NAME 'radiusLoginIPHost'
-      DESC 'replyItem: Login-IP-Host'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.23
-      NAME 'radiusLoginLATGroup'
-      DESC 'replyItem: Login-LAT-Group'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.24
-      NAME 'radiusLoginLATNode'
-      DESC 'replyItem: Login-LAT-Node'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.25
-      NAME 'radiusLoginLATPort'
-      DESC 'replyItem: Login-LAT-Port'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.26
-      NAME 'radiusLoginLATService'
-      DESC 'replyItem: Login-LAT-Service'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.27
-      NAME 'radiusLoginService'
-      DESC 'replyItem: Login-Service'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.28
-      NAME 'radiusLoginTCPPort'
-      DESC 'replyItem: Login-TCP-Port'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.29
-      NAME 'radiusPasswordRetry'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.30
-      NAME 'radiusPortLimit'
-      DESC 'replyItem: Port-Limit'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.49
-      NAME 'radiusProfileDn'
-      DESC ''
-      EQUALITY distinguishedNameMatch
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.31
-      NAME 'radiusPrompt'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.50
-      NAME 'radiusProxyToRealm'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.51
-      NAME 'radiusReplicateToRealm'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.52
-      NAME 'radiusRealm'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.32
-      NAME 'radiusServiceType'
-      DESC 'replyItem: Service-Type'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.33
-      NAME 'radiusSessionTimeout'
-      DESC 'replyItem: Session-Timeout'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.34
-      NAME 'radiusTerminationAction'
-      DESC 'replyItem: Termination-Action'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.35
-      NAME 'radiusTunnelAssignmentId'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.36
-      NAME 'radiusTunnelMediumType'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.37
-      NAME 'radiusTunnelPassword'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.38
-      NAME 'radiusTunnelPreference'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.39
-      NAME 'radiusTunnelPrivateGroupId'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.40
-      NAME 'radiusTunnelServerEndpoint'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.41
-      NAME 'radiusTunnelType'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.42
-      NAME 'radiusVSA'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.43
-      NAME 'radiusTunnelClientEndpoint'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-
-#need to change asn1.id
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.53
-      NAME 'radiusSimultaneousUse'
-      DESC 'checkItem: Simultaneous-Use'
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.54
-      NAME 'radiusLoginTime'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.55
-      NAME 'radiusUserCategory'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.56
-      NAME 'radiusStripUserName'
-      DESC ''
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.57
-      NAME 'dialupAccess'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.58
-      NAME 'radiusExpiration'
-      DESC 'checkItem: Expiration'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.59
-      NAME 'radiusCheckItem'
-      DESC 'checkItem: $GENERIC$'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.60
-      NAME 'radiusReplyItem'
-      DESC 'replyItem: $GENERIC$'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.61
-      NAME 'radiusNASIpAddress'
-      DESC ''
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-      SINGLE-VALUE
-   )
-
-attributetype
-   ( 1.3.6.1.4.1.3317.4.3.1.62
-      NAME 'radiusReplyMessage'
-      DESC 'replyItem: Reply-Message'
-      EQUALITY caseIgnoreIA5Match
-      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-   )
-
-
-objectclass
-   ( 1.3.6.1.4.1.3317.4.3.2.1
-      NAME 'radiusprofile'
-      SUP top AUXILIARY
-      DESC ''
-      MUST cn
-      MAY ( radiusArapFeatures $ radiusArapSecurity $ radiusArapZoneAccess $
-            radiusAuthType $ radiusCallbackId $ radiusCallbackNumber $
-            radiusCalledStationId $ radiusCallingStationId $ radiusClass $
-            radiusClientIPAddress $ radiusFilterId $ radiusFramedAppleTalkLink $
-            radiusFramedAppleTalkNetwork $ radiusFramedAppleTalkZone $
-            radiusFramedCompression $ radiusFramedIPAddress $
-            radiusFramedIPNetmask $ radiusFramedIPXNetwork $
-            radiusFramedMTU $ radiusFramedProtocol $
-       radiusCheckItem $ radiusReplyItem $
-            radiusFramedRoute $ radiusFramedRouting $ radiusIdleTimeout $
-            radiusGroupName $ radiusHint $ radiusHuntgroupName $
-            radiusLoginIPHost $ radiusLoginLATGroup $ radiusLoginLATNode $
-            radiusLoginLATPort $ radiusLoginLATService $ radiusLoginService $
-            radiusLoginTCPPort $ radiusLoginTime $ radiusPasswordRetry $
-            radiusPortLimit $ radiusPrompt $ radiusProxyToRealm $
-            radiusRealm $ radiusReplicateToRealm $ radiusServiceType $
-            radiusSessionTimeout $ radiusStripUserName $
-            radiusTerminationAction $ radiusTunnelClientEndpoint $ radiusProfileDn $
-            radiusSimultaneousUse $ radiusTunnelAssignmentId $
-            radiusTunnelMediumType $ radiusTunnelPassword $ radiusTunnelPreference $
-            radiusTunnelPrivateGroupId $ radiusTunnelServerEndpoint $
-            radiusTunnelType $ radiusUserCategory $ radiusVSA $
-            radiusExpiration $ dialupAccess $ radiusNASIpAddress $
-            radiusReplyMessage )
-   )
-
-objectclass
-  ( 1.3.6.1.4.1.3317.4.3.2.2
-   NAME 'radiusObjectProfile'
-   SUP top STRUCTURAL
-   DESC 'A Container Objectclass to be used for creating radius profile object'
-   MUST cn
-   MAY ( uid $ userPassword $ description )
-  )

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/samba.schema

@@ -1,554 +0,0 @@
-##
-## schema file for OpenLDAP 2.x
-## Schema for storing Samba user accounts and group maps in LDAP
-## OIDs are owned by the Samba Team
-##
-## Prerequisite schemas - uid         (cosine.schema)
-##                      - displayName (inetorgperson.schema)
-##                      - gidNumber   (nis.schema)
-##
-## 1.3.6.1.4.1.7165.2.1.x - attributetypes
-## 1.3.6.1.4.1.7165.2.2.x - objectclasses
-##
-## Printer support
-## 1.3.6.1.4.1.7165.2.3.1.x - attributetypes
-## 1.3.6.1.4.1.7165.2.3.2.x - objectclasses
-##
-## Samba4
-## 1.3.6.1.4.1.7165.4.1.x - attributetypes
-## 1.3.6.1.4.1.7165.4.2.x - objectclasses
-## 1.3.6.1.4.1.7165.4.3.x - LDB/LDAP Controls
-## 1.3.6.1.4.1.7165.4.4.x - LDB/LDAP Extended Operations
-## 1.3.6.1.4.1.7165.4.255.x - mapped OIDs due to conflicts between AD and standards-track
-##
-## ----- READ THIS WHEN ADDING A NEW ATTRIBUTE OR OBJECT CLASS ------
-##
-## Run the 'get_next_oid' bash script in this directory to find the 
-## next available OID for attribute type and object classes.
-##
-##   $ ./get_next_oid
-##   attributetype ( 1.3.6.1.4.1.7165.2.1.XX NAME ....
-##   objectclass ( 1.3.6.1.4.1.7165.2.2.XX NAME ....
-##
-## Also ensure that new entries adhere to the declaration style
-## used throughout this file
-##
-##    <attributetype|objectclass> ( 1.3.6.1.4.1.7165.2.XX.XX NAME ....
-##                               ^ ^                        ^
-##
-## The spaces are required for the get_next_oid script (and for 
-## readability).
-##
-## ------------------------------------------------------------------
-
-# objectIdentifier SambaRoot 1.3.6.1.4.1.7165
-# objectIdentifier Samba3 SambaRoot:2
-# objectIdentifier Samba3Attrib Samba3:1
-# objectIdentifier Samba3ObjectClass Samba3:2
-# objectIdentifier Samba4 SambaRoot:4
-
-########################################################################
-##                            HISTORICAL                              ##
-########################################################################
-
-##
-## Password hashes
-##
-#attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword'
-#       DESC 'LanManager Passwd'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.2 NAME 'ntPassword'
-#       DESC 'NT Passwd'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
-
-##
-## Account flags in string format ([UWDX     ])
-##
-#attributetype ( 1.3.6.1.4.1.7165.2.1.4 NAME 'acctFlags'
-#       DESC 'Account Flags'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{16} SINGLE-VALUE )
-
-##
-## Password timestamps & policies
-##
-#attributetype ( 1.3.6.1.4.1.7165.2.1.3 NAME 'pwdLastSet'
-#       DESC 'NT pwdLastSet'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.5 NAME 'logonTime'
-#       DESC 'NT logonTime'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.6 NAME 'logoffTime'
-#       DESC 'NT logoffTime'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.7 NAME 'kickoffTime'
-#       DESC 'NT kickoffTime'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.8 NAME 'pwdCanChange'
-#       DESC 'NT pwdCanChange'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.9 NAME 'pwdMustChange'
-#       DESC 'NT pwdMustChange'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-##
-## string settings
-##
-#attributetype ( 1.3.6.1.4.1.7165.2.1.10 NAME 'homeDrive'
-#       DESC 'NT homeDrive'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{4} SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.11 NAME 'scriptPath'
-#       DESC 'NT scriptPath'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.12 NAME 'profilePath'
-#       DESC 'NT profilePath'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.13 NAME 'userWorkstations'
-#       DESC 'userWorkstations'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.17 NAME 'smbHome'
-#       DESC 'smbHome'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.18 NAME 'domain'
-#       DESC 'Windows NT domain to which the user belongs'
-#       EQUALITY caseIgnoreIA5Match
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
-
-##
-## user and group RID
-##
-#attributetype ( 1.3.6.1.4.1.7165.2.1.14 NAME 'rid'
-#       DESC 'NT rid'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-#attributetype ( 1.3.6.1.4.1.7165.2.1.15 NAME 'primaryGroupID'
-#       DESC 'NT Group RID'
-#       EQUALITY integerMatch
-#       SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-##
-## The smbPasswordEntry objectclass has been depreciated in favor of the
-## sambaAccount objectclass
-##
-#objectclass ( 1.3.6.1.4.1.7165.2.2.1 NAME 'smbPasswordEntry' SUP top AUXILIARY
-#        DESC 'Samba smbpasswd entry'
-#        MUST ( uid $ uidNumber )
-#        MAY  ( lmPassword $ ntPassword $ pwdLastSet $ acctFlags ))
-
-#objectclass ( 1.3.6.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top STRUCTURAL
-#       DESC 'Samba Account'
-#       MUST ( uid $ rid )
-#       MAY  ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
-#               logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $
-#               displayName $ smbHome $ homeDrive $ scriptPath $ profilePath $
-#               description $ userWorkstations $ primaryGroupID $ domain ))
-
-#objectclass ( 1.3.6.1.4.1.7165.2.2.3 NAME 'sambaAccount' SUP top AUXILIARY
-#       DESC 'Samba Auxiliary Account'
-#       MUST ( uid $ rid )
-#       MAY  ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $
-#              logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $
-#              displayName $ smbHome $ homeDrive $ scriptPath $ profilePath $
-#              description $ userWorkstations $ primaryGroupID $ domain ))
-
-########################################################################
-##                        END OF HISTORICAL                           ##
-########################################################################
-
-#######################################################################
-##                Attributes used by Samba 3.0 schema                ##
-#######################################################################
-
-##
-## Password hashes
-##
-attributetype ( 1.3.6.1.4.1.7165.2.1.24 NAME 'sambaLMPassword'
-        DESC 'LanManager Password'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.25 NAME 'sambaNTPassword'
-        DESC 'MD4 hash of the unicode password'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
-
-##
-## Account flags in string format ([UWDX     ])
-##
-attributetype ( 1.3.6.1.4.1.7165.2.1.26 NAME 'sambaAcctFlags'
-        DESC 'Account Flags'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{16} SINGLE-VALUE )
-
-##
-## Password timestamps & policies
-##
-attributetype ( 1.3.6.1.4.1.7165.2.1.27 NAME 'sambaPwdLastSet'
-        DESC 'Timestamp of the last password update'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.28 NAME 'sambaPwdCanChange'
-        DESC 'Timestamp of when the user is allowed to update the password'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.29 NAME 'sambaPwdMustChange'
-        DESC 'Timestamp of when the password will expire'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.30 NAME 'sambaLogonTime'
-        DESC 'Timestamp of last logon'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.31 NAME 'sambaLogoffTime'
-        DESC 'Timestamp of last logoff'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.32 NAME 'sambaKickoffTime'
-        DESC 'Timestamp of when the user will be logged off automatically'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.48 NAME 'sambaBadPasswordCount'
-        DESC 'Bad password attempt count'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.49 NAME 'sambaBadPasswordTime'
-        DESC 'Time of the last bad password attempt'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.55 NAME 'sambaLogonHours'
-        DESC 'Logon Hours'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{42} SINGLE-VALUE )
-
-##
-## string settings
-##
-attributetype ( 1.3.6.1.4.1.7165.2.1.33 NAME 'sambaHomeDrive'
-        DESC 'Driver letter of home directory mapping'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{4} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.34 NAME 'sambaLogonScript'
-        DESC 'Logon script path'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{255} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.35 NAME 'sambaProfilePath'
-        DESC 'Roaming profile path'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{255} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.36 NAME 'sambaUserWorkstations'
-        DESC 'List of user workstations the user is allowed to logon to'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{255} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.37 NAME 'sambaHomePath'
-        DESC 'Home directory UNC path'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.38 NAME 'sambaDomainName'
-        DESC 'Windows NT domain to which the user belongs'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.47 NAME 'sambaMungedDial'
-        DESC 'Base64 encoded user parameter string'
-        EQUALITY caseExactMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1050} )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.54 NAME 'sambaPasswordHistory'
-        DESC 'Concatenated MD5 hashes of the salted NT passwords used on this account'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} )
-
-##
-## SID, of any type
-##
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.20 NAME 'sambaSID'
-        DESC 'Security ID'
-        EQUALITY caseIgnoreIA5Match
-        SUBSTR caseExactIA5SubstringsMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} SINGLE-VALUE )
-
-##
-## Primary group SID, compatible with ntSid
-##
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.23 NAME 'sambaPrimaryGroupSID'
-        DESC 'Primary Group Security ID'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.51 NAME 'sambaSIDList'
-        DESC 'Security ID List'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} )
-
-##
-## group mapping attributes
-##
-attributetype ( 1.3.6.1.4.1.7165.2.1.19 NAME 'sambaGroupType'
-        DESC 'NT Group Type'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-##
-## Store info on the domain
-##
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.21 NAME 'sambaNextUserRid'
-        DESC 'Next NT rid to give our for users'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.22 NAME 'sambaNextGroupRid'
-        DESC 'Next NT rid to give out for groups'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.39 NAME 'sambaNextRid'
-        DESC 'Next NT rid to give out for anything'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.40 NAME 'sambaAlgorithmicRidBase'
-        DESC 'Base at which the samba RID generation algorithm should operate'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.41 NAME 'sambaShareName'
-        DESC 'Share Name'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.42 NAME 'sambaOptionName'
-        DESC 'Option Name'
-        EQUALITY caseIgnoreMatch
-        SUBSTR caseIgnoreSubstringsMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.43 NAME 'sambaBoolOption'
-        DESC 'A boolean option'
-        EQUALITY booleanMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.44 NAME 'sambaIntegerOption'
-        DESC 'An integer option'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.45 NAME 'sambaStringOption'
-        DESC 'A string option'
-        EQUALITY caseExactIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.46 NAME 'sambaStringListOption'
-        DESC 'A string list option'
-        EQUALITY caseIgnoreMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-
-##attributetype ( 1.3.6.1.4.1.7165.2.1.50 NAME 'sambaPrivName' 
-##      SUP name )
-
-##attributetype ( 1.3.6.1.4.1.7165.2.1.52 NAME 'sambaPrivilegeList'
-##      DESC 'Privileges List'
-##      EQUALITY caseIgnoreIA5Match
-##      SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} )
-
-attributetype ( 1.3.6.1.4.1.7165.2.1.53 NAME 'sambaTrustFlags'
-        DESC 'Trust Password Flags'
-        EQUALITY caseIgnoreIA5Match
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-# "min password length"
-attributetype ( 1.3.6.1.4.1.7165.2.1.58 NAME 'sambaMinPwdLength'
-        DESC 'Minimal password length (default: 5)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "password history"
-attributetype ( 1.3.6.1.4.1.7165.2.1.59 NAME 'sambaPwdHistoryLength'
-        DESC 'Length of Password History Entries (default: 0 => off)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "user must logon to change password"
-attributetype ( 1.3.6.1.4.1.7165.2.1.60 NAME 'sambaLogonToChgPwd'
-        DESC 'Force Users to logon for password change (default: 0 => off, 2 => on)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "maximum password age"
-attributetype ( 1.3.6.1.4.1.7165.2.1.61 NAME 'sambaMaxPwdAge'
-        DESC 'Maximum password age, in seconds (default: -1 => never expire passwords)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "minimum password age"
-attributetype ( 1.3.6.1.4.1.7165.2.1.62 NAME 'sambaMinPwdAge'
-        DESC 'Minimum password age, in seconds (default: 0 => allow immediate password change)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "lockout duration"
-attributetype ( 1.3.6.1.4.1.7165.2.1.63 NAME 'sambaLockoutDuration'
-        DESC 'Lockout duration in minutes (default: 30, -1 => forever)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "reset count minutes"
-attributetype ( 1.3.6.1.4.1.7165.2.1.64 NAME 'sambaLockoutObservationWindow'
-        DESC 'Reset time after lockout in minutes (default: 30)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "bad lockout attempt"
-attributetype ( 1.3.6.1.4.1.7165.2.1.65 NAME 'sambaLockoutThreshold'
-        DESC 'Lockout users after bad logon attempts (default: 0 => off)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "disconnect time"
-attributetype ( 1.3.6.1.4.1.7165.2.1.66 NAME 'sambaForceLogoff'
-        DESC 'Disconnect Users outside logon hours (default: -1 => off, 0 => on)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-# "refuse machine password change"
-attributetype ( 1.3.6.1.4.1.7165.2.1.67 NAME 'sambaRefuseMachinePwdChange'
-        DESC 'Allow Machine Password changes (default: 0 => off)'
-        EQUALITY integerMatch
-        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-
-
-
-#######################################################################
-##              objectClasses used by Samba 3.0 schema               ##
-#######################################################################
-
-## The X.500 data model (and therefore LDAPv3) says that each entry can
-## only have one structural objectclass.  OpenLDAP 2.0 does not enforce
-## this currently but will in v2.1
-
-##
-## added new objectclass (and OID) for 3.0 to help us deal with backwards
-## compatibility with 2.2 installations (e.g. ldapsam_compat)  --jerry
-##
-objectclass ( 1.3.6.1.4.1.7165.2.2.6 NAME 'sambaSamAccount' SUP top AUXILIARY
-        DESC 'Samba 3.0 Auxilary SAM Account'
-        MUST ( uid $ sambaSID )
-        MAY  ( cn $ sambaLMPassword $ sambaNTPassword $ sambaPwdLastSet $
-               sambaLogonTime $ sambaLogoffTime $ sambaKickoffTime $
-               sambaPwdCanChange $ sambaPwdMustChange $ sambaAcctFlags $
-               displayName $ sambaHomePath $ sambaHomeDrive $ sambaLogonScript $
-               sambaProfilePath $ description $ sambaUserWorkstations $
-               sambaPrimaryGroupSID $ sambaDomainName $ sambaMungedDial $
-               sambaBadPasswordCount $ sambaBadPasswordTime $
-               sambaPasswordHistory $ sambaLogonHours))
-
-##
-## Group mapping info
-##
-objectclass ( 1.3.6.1.4.1.7165.2.2.4 NAME 'sambaGroupMapping' SUP top AUXILIARY
-        DESC 'Samba Group Mapping'
-        MUST ( gidNumber $ sambaSID $ sambaGroupType )
-        MAY  ( displayName $ description $ sambaSIDList ))
-
-##
-## Trust password for trust relationships (any kind)
-##
-objectclass ( 1.3.6.1.4.1.7165.2.2.14 NAME 'sambaTrustPassword' SUP top STRUCTURAL
-        DESC 'Samba Trust Password'
-        MUST ( sambaDomainName $ sambaNTPassword $ sambaTrustFlags )
-        MAY ( sambaSID $ sambaPwdLastSet ))
-
-##
-## Whole-of-domain info
-##
-objectclass ( 1.3.6.1.4.1.7165.2.2.5 NAME 'sambaDomain' SUP top STRUCTURAL
-        DESC 'Samba Domain Information'
-        MUST ( sambaDomainName $ 
-               sambaSID ) 
-        MAY ( sambaNextRid $ sambaNextGroupRid $ sambaNextUserRid $
-              sambaAlgorithmicRidBase $ 
-              sambaMinPwdLength $ sambaPwdHistoryLength $ sambaLogonToChgPwd $
-              sambaMaxPwdAge $ sambaMinPwdAge $
-              sambaLockoutDuration $ sambaLockoutObservationWindow $ sambaLockoutThreshold $
-              sambaForceLogoff $ sambaRefuseMachinePwdChange ))
-
-##
-## used for idmap_ldap module
-##
-objectclass ( 1.3.6.1.4.1.7165.2.2.7 NAME 'sambaUnixIdPool' SUP top AUXILIARY
-        DESC 'Pool for allocating UNIX uids/gids'
-        MUST ( uidNumber $ gidNumber ) )
-
-
-objectclass ( 1.3.6.1.4.1.7165.2.2.8 NAME 'sambaIdmapEntry' SUP top AUXILIARY
-        DESC 'Mapping from a SID to an ID'
-        MUST ( sambaSID )
-        MAY ( uidNumber $ gidNumber ) )
-
-objectclass ( 1.3.6.1.4.1.7165.2.2.9 NAME 'sambaSidEntry' SUP top STRUCTURAL
-        DESC 'Structural Class for a SID'
-        MUST ( sambaSID ) )
-
-objectclass ( 1.3.6.1.4.1.7165.2.2.10 NAME 'sambaConfig' SUP top AUXILIARY
-        DESC 'Samba Configuration Section'
-        MAY ( description ) )
-
-objectclass ( 1.3.6.1.4.1.7165.2.2.11 NAME 'sambaShare' SUP top STRUCTURAL
-        DESC 'Samba Share Section'
-        MUST ( sambaShareName )
-        MAY ( description ) )
-
-objectclass ( 1.3.6.1.4.1.7165.2.2.12 NAME 'sambaConfigOption' SUP top STRUCTURAL
-        DESC 'Samba Configuration Option'
-        MUST ( sambaOptionName )
-        MAY ( sambaBoolOption $ sambaIntegerOption $ sambaStringOption $ 
-              sambaStringListoption $ description ) )
-
-
-## retired during privilege rewrite
-##objectclass ( 1.3.6.1.4.1.7165.2.2.13 NAME 'sambaPrivilege' SUP top AUXILIARY
-##      DESC 'Samba Privilege'
-##      MUST ( sambaSID )
-##      MAY ( sambaPrivilegeList ) )

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/mmc/zarafa.schema

@@ -1,300 +0,0 @@
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.1
-	NAME 'zarafaQuotaOverride'
-	DESC 'ZARAFA: Override child quota'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.2
-	NAME 'zarafaQuotaWarn'
-	DESC 'ZARAFA: Warning quota size in MB'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.3
-	NAME 'zarafaQuotaSoft'
-	DESC 'ZARAFA: Soft quota size in MB'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.4
-	NAME 'zarafaQuotaHard'
-	DESC 'ZARAFA: Hard quota size in MB'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.5
-	NAME 'zarafaUserDefaultQuotaOverride'
-	DESC 'ZARAFA: Override User default quota for children'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.6
-	NAME 'zarafaUserDefaultQuotaWarn'
-	DESC 'ZARAFA: User default warning quota size in MB'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.7
-	NAME 'zarafaUserDefaultQuotaSoft'
-	DESC 'ZARAFA: User default soft quota size in MB'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.1.8
-	NAME 'zarafaUserDefaultQuotaHard'
-	DESC 'ZARAFA: User default hard quota size in MB'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.1
-	NAME 'zarafaAdmin'
-	DESC 'ZARAFA: Administrator of zarafa'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.2
-	NAME 'zarafaSharedStoreOnly'
-	DESC 'ZARAFA: is store a shared store'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.3
-	NAME 'zarafaAccount'
-	DESC 'ZARAFA: entry is a part of zarafa'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.4
-	NAME 'zarafaSendAsPrivilege'
-	DESC 'ZARAFA: Users may directly send email as this user'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.5
-	NAME 'zarafaMrAccept'
-	DESC 'ZARAFA: user should auto-accept meeting requests'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.6
-	NAME 'zarafaMrDeclineConflict'
-	DESC 'ZARAFA: user should automatically decline conflicting meeting requests'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.7
-	NAME 'zarafaMrDeclineRecurring'
-	DESC 'ZARAFA: user should automatically decline recurring meeting requests'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-	
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.8
-	NAME 'zarafaId'
-	DESC 'ZARAFA: Generic unique ID'
-	EQUALITY octetStringMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SINGLE-VALUE )	
-	
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.9
-	NAME 'zarafaResourceType'
-	DESC 'ZARAFA: for shared stores, resource is type Room or Equipment'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.10
-	NAME 'zarafaResourceCapacity'
-	DESC 'ZARAFA: number of rooms or equipment available'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )	
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.2.11
-	NAME 'zarafaHidden'
-	DESC 'ZARAFA: This object should be hidden from address book'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.3.1
-	NAME 'zarafaAliases'
-	DESC 'ZARAFA: All other email addresses for this user'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-attributetype ( 1.3.6.1.4.1.26278.1.1.4.1
-	NAME 'zarafaUserServer'
-	DESC 'ZARAFA: Home server for the user'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-
-objectclass	( 1.3.6.1.4.1.26278.1.1.0.0
-	NAME 'zarafa-user'
-	DESC 'Zarafa: an user of Zarafa'
-	SUP top AUXILIARY
-	MUST ( cn )
-	MAY (
-		zarafaQuotaOverride $ zarafaQuotaWarn $ zarafaQuotaSoft $ zarafaSendAsPrivilege $
-		zarafaQuotaHard $ zarafaAdmin $ zarafaSharedStoreOnly $ zarafaResourceType $
-		zarafaResourceCapacity $ zarafaAccount $ zarafaHidden $ zarafaAliases $
-		zarafaUserServer
-		)
-	)
-
-objectclass	( 1.3.6.1.4.1.26278.1.6.0.0
-	NAME 'zarafa-contact'
-	DESC 'Zarafa: a contact of Zarafa'
-	SUP top AUXILIARY
-	MUST ( cn $ uidNumber )
-	MAY (
-		zarafaSendAsPrivilege $ zarafaHidden $ zarafaAliases
-		)
-	)
-
-
-attributetype ( 1.3.6.1.4.1.26278.1.2.2.1
-	NAME 'zarafaSecurityGroup'
-	DESC 'ZARAFA: group has security possibilities'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-objectclass	( 1.3.6.1.4.1.26278.1.2.0.0
-	NAME 'zarafa-group'
-	DESC 'Zarafa: a group of Zarafa'
-	SUP top	AUXILIARY
-	MUST ( cn )
-	MAY (
-		zarafaAccount $ zarafaHidden $ mail $ zarafaAliases $ zarafaSecurityGroup
-		)
-	)
-	
-attributetype ( 1.3.6.1.4.1.26278.1.3.2.4
-	NAME 'zarafaViewPrivilege'
-	DESC 'ZARAFA: Companies with view privileges over selected company'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-	)
-
-attributetype ( 1.3.6.1.4.1.26278.1.3.2.5
-	NAME 'zarafaAdminPrivilege'
-	DESC 'ZARAFA: Users from different companies which are administrator over selected company'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-	)
-
-attributetype ( 1.3.6.1.4.1.26278.1.3.2.6
-	NAME 'zarafaSystemAdmin'
-	DESC 'ZARAFA: The user who is the system administrator for this company'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE
-	)
-
-attributetype (1.3.6.1.4.1.26278.1.3.1.5
-	NAME 'zarafaQuotaUserWarningRecipients'
-	DESC 'ZARAFA: Users who will recieve a notification email when a user exceeds his quota'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-	)
-
-attributetype (1.3.6.1.4.1.26278.1.3.1.6
-	NAME 'zarafaQuotaCompanyWarningRecipients'
-	DESC 'ZARAFA: Users who will recieve a notification email when a company exceeds its quota'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-	)
-	
-attributetype ( 1.3.6.1.4.1.26278.1.3.4.1
-	NAME 'zarafaCompanyServer'
-	DESC 'ZARAFA: Home server for the user'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-
-objectclass ( 1.3.6.1.4.1.26278.1.3.0.0
-	NAME 'zarafa-company'
-	DESC 'ZARAFA: a company of Zarafa' 
-	SUP top AUXILIARY
-	MUST ( cn )
-	MAY (
-		zarafaAccount $ zarafaHidden $
-		zarafaViewPrivilege $ zarafaAdminPrivilege $ zarafaSystemAdmin $
-		zarafaQuotaOverride $ zarafaQuotaWarn $
-		zarafaUserDefaultQuotaOverride $ zarafaUserDefaultQuotaWarn $ zarafaUserDefaultQuotaSoft $ zarafaUserDefaultQuotaHard $
-		zarafaQuotaUserWarningRecipients $ zarafaQuotaCompanyWarningRecipients $
-		zarafaCompanyServer
-		)
-	)
-
-attributetype (1.3.6.1.4.1.26278.1.4.4.1
-	NAME 'zarafaHttpPort'
-	DESC 'ZARAFA: Port for the http connection'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype (1.3.6.1.4.1.26278.1.4.4.2
-	NAME 'zarafaSslPort'
-	DESC 'ZARAFA: Port for the ssl connection'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-attributetype (1.3.6.1.4.1.26278.1.4.4.3
-	NAME 'zarafaFilePath'
-	DESC 'ZARAFA: The unix socket or named pipe to the server'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-	
-attributetype (1.3.6.1.4.1.26278.1.4.4.4
-	NAME 'zarafaContainsPublic'
-	DESC 'ZARAFA: This server contains the public store'
-	EQUALITY integerMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-
-objectclass ( 1.3.6.1.4.1.26278.1.4.0.0
-	NAME 'zarafa-server'
-	DESC 'ZARAFA: a Zarafa server'
-	SUP top AUXILIARY
-	MUST ( cn )
-	MAY (
-		zarafaAccount $ zarafaHidden $ zarafaHttpPort $ zarafaSslPort $ zarafaFilePath $ zarafaContainsPublic
-		)
-	)
-
-attributetype (1.3.6.1.4.1.26278.1.5.5.1
-	NAME 'zarafaFilter'
-	DESC 'ZARAFA: LDAP Filter to apply'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-
-attributetype (1.3.6.1.4.1.26278.1.5.5.2
-	NAME 'zarafaBase'
-	DESC 'ZARAFA: LDAP Search base to apply'
-	EQUALITY caseIgnoreMatch
-	SUBSTR caseIgnoreSubstringsMatch
-	SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-
-objectclass ( 1.3.6.1.4.1.26278.1.5.0.0
-	NAME 'zarafa-addresslist'
-	DESC 'ZARAFA: a Zarafa Addresslist'
-	SUP top STRUCTURAL
-	MUST ( cn )
-    MAY (
-		zarafaAccount $ zarafaHidden $ zarafaFilter $ zarafaBase
-		)
-	)
-
-objectclass ( 1.3.6.1.4.1.26278.1.7.0.0
-	NAME 'zarafa-dynamicgroup'
-	DESC 'ZARAFA: a Zarafa dynamic group'
-	SUP top STRUCTURAL
-	MUST ( cn )
-    MAY (
-		zarafaAccount $ zarafaHidden $ mail $ zarafaAliases $ zarafaFilter $ zarafaBase
-		)
-	)

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/rfc2307bis.conf

@@ -1,4 +0,0 @@
-include         /etc/ldap/schema/core.schema
-include         /etc/ldap/schema/cosine.schema
-include         /etc/ldap/schema/inetorgperson.schema
-include         /etc/ldap/schema/rfc2307bis.schema

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/rfc2307bis.ldif

@@ -1,158 +0,0 @@
-# AUTO-GENERATED FILE - DO NOT EDIT!! Use ldapmodify.
-# CRC32 6b6ad917
-dn: cn=rfc2307bis,cn=schema,cn=config
-objectClass: olcSchemaConfig
-cn: rfc2307bis
-olcAttributeTypes: {0}( 1.3.6.1.1.1.1.2 NAME 'gecos' DESC 'The GECOS field;
- the common name' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch
- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE )
-olcAttributeTypes: {1}( 1.3.6.1.1.1.1.3 NAME 'homeDirectory' DESC 'The absol
- ute path to the home directory' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4
- .1.1466.115.121.1.26 SINGLE-VALUE )
-olcAttributeTypes: {2}( 1.3.6.1.1.1.1.4 NAME 'loginShell' DESC 'The path to
- the login shell' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121
- .1.26 SINGLE-VALUE )
-olcAttributeTypes: {3}( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange' EQUALITY int
- egerMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.2
- 7 SINGLE-VALUE )
-olcAttributeTypes: {4}( 1.3.6.1.1.1.1.6 NAME 'shadowMin' EQUALITY integerMat
- ch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGL
- E-VALUE )
-olcAttributeTypes: {5}( 1.3.6.1.1.1.1.7 NAME 'shadowMax' EQUALITY integerMat
- ch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGL
- E-VALUE )
-olcAttributeTypes: {6}( 1.3.6.1.1.1.1.8 NAME 'shadowWarning' EQUALITY intege
- rMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 S
- INGLE-VALUE )
-olcAttributeTypes: {7}( 1.3.6.1.1.1.1.9 NAME 'shadowInactive' EQUALITY integ
- erMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
- SINGLE-VALUE )
-olcAttributeTypes: {8}( 1.3.6.1.1.1.1.10 NAME 'shadowExpire' EQUALITY intege
- rMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 S
- INGLE-VALUE )
-olcAttributeTypes: {9}( 1.3.6.1.1.1.1.11 NAME 'shadowFlag' EQUALITY integerM
- atch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SIN
- GLE-VALUE )
-olcAttributeTypes: {10}( 1.3.6.1.1.1.1.12 NAME 'memberUid' EQUALITY caseExac
- tMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-olcAttributeTypes: {11}( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup' EQUALITY
- caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-olcAttributeTypes: {12}( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple' DESC 'Net
- group triple' EQUALITY caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYN
- TAX 1.3.6.1.4.1.1466.115.121.1.15 )
-olcAttributeTypes: {13}( 1.3.6.1.1.1.1.15 NAME 'ipServicePort' DESC 'Service
-  port number' EQUALITY integerMatch ORDERING integerOrderingMatch SYNTAX 1.
- 3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-olcAttributeTypes: {14}( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol' DESC 'Ser
- vice protocol name' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.12
- 1.1.15 )
-olcAttributeTypes: {15}( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber' DESC 'IP p
- rotocol number' EQUALITY integerMatch ORDERING integerOrderingMatch SYNTAX
- 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
-olcAttributeTypes: {16}( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber' DESC 'ONC RPC
- number' EQUALITY integerMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.
- 4.1.1466.115.121.1.27 SINGLE-VALUE )
-olcAttributeTypes: {17}( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber' DESC 'IPv4 add
- resses as a dotted decimal omitting leading               zeros or IPv6 add
- resses as defined in RFC2373' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.
- 1.1466.115.121.1.26 )
-olcAttributeTypes: {18}( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber' DESC 'IP ne
- twork omitting leading zeros, eg. 192.168' EQUALITY caseIgnoreIA5Match SYNT
- AX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-olcAttributeTypes: {19}( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber' DESC 'IP ne
- tmask omitting leading zeros, eg. 255.255.255.0' EQUALITY caseIgnoreIA5Matc
- h SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE )
-olcAttributeTypes: {20}( 1.3.6.1.1.1.1.22 NAME 'macAddress' DESC 'MAC addres
- s in maximal, colon separated hex               notation, eg. 00:00:92:90:e
- e:e2' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-olcAttributeTypes: {21}( 1.3.6.1.1.1.1.23 NAME 'bootParameter' DESC 'rpc.boo
- tparamd parameter' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.1
- 21.1.26 )
-olcAttributeTypes: {22}( 1.3.6.1.1.1.1.24 NAME 'bootFile' DESC 'Boot image n
- ame' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-olcAttributeTypes: {23}( 1.3.6.1.1.1.1.26 NAME 'nisMapName' DESC 'Name of a
- generic NIS map' EQUALITY caseIgnoreMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1
- .15{64} )
-olcAttributeTypes: {24}( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry' DESC 'A generic
-  NIS entry' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{10
- 24} SINGLE-VALUE )
-olcAttributeTypes: {25}( 1.3.6.1.1.1.1.28 NAME 'nisPublicKey' DESC 'NIS publ
- ic key' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SING
- LE-VALUE )
-olcAttributeTypes: {26}( 1.3.6.1.1.1.1.29 NAME 'nisSecretKey' DESC 'NIS secr
- et key' EQUALITY octetStringMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 SING
- LE-VALUE )
-olcAttributeTypes: {27}( 1.3.6.1.1.1.1.30 NAME 'nisDomain' DESC 'NIS domain'
-  EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
-olcAttributeTypes: {28}( 1.3.6.1.1.1.1.31 NAME 'automountMapName' DESC 'auto
- mount Map Name' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.1
- 5 SINGLE-VALUE )
-olcAttributeTypes: {29}( 1.3.6.1.1.1.1.32 NAME 'automountKey' DESC 'Automoun
- t Key value' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 S
- INGLE-VALUE )
-olcAttributeTypes: {30}( 1.3.6.1.1.1.1.33 NAME 'automountInformation' DESC '
- Automount information' EQUALITY caseExactMatch SYNTAX 1.3.6.1.4.1.1466.115.
- 121.1.15 SINGLE-VALUE )
-olcObjectClasses: {0}( 1.3.6.1.1.1.2.0 NAME 'posixAccount' DESC 'Abstraction
-  of an account with POSIX attributes' SUP top AUXILIARY MUST ( cn $ uid $ u
- idNumber $ gidNumber $ homeDirectory ) MAY ( userPassword $ loginShell $ ge
- cos $ description ) )
-olcObjectClasses: {1}( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' DESC 'Additional
-  attributes for shadow passwords' SUP top AUXILIARY MUST uid MAY ( userPass
- word $ description $ shadowLastChange $ shadowMin $ shadowMax $ shadowWarni
- ng $ shadowInactive $ shadowExpire $ shadowFlag ) )
-olcObjectClasses: {2}( 1.3.6.1.1.1.2.2 NAME 'posixGroup' DESC 'Abstraction o
- f a group of accounts' SUP top AUXILIARY MUST gidNumber MAY ( userPassword
- $ memberUid $ description ) )
-olcObjectClasses: {3}( 1.3.6.1.1.1.2.3 NAME 'ipService' DESC 'Abstraction an
-  Internet Protocol service.               Maps an IP port and protocol (suc
- h as tcp or udp)               to one or more names; the distinguished valu
- e of               the cn attribute denotes the services canonical
-       name' SUP top STRUCTURAL MUST ( cn $ ipServicePort $ ipServiceProtoco
- l ) MAY description )
-olcObjectClasses: {4}( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' DESC 'Abstraction o
- f an IP protocol. Maps a protocol number               to one or more names
- . The distinguished value of the cn               attribute denotes the pro
- tocol canonical name' SUP top STRUCTURAL MUST ( cn $ ipProtocolNumber ) MAY
-  description )
-olcObjectClasses: {5}( 1.3.6.1.1.1.2.5 NAME 'oncRpc' DESC 'Abstraction of an
-  Open Network Computing (ONC)              [RFC1057] Remote Procedure Call
- (RPC) binding.              This class maps an ONC RPC number to a name.
-            The distinguished value of the cn attribute denotes
-  the RPC service canonical name' SUP top STRUCTURAL MUST ( cn $ oncRpcNumbe
- r ) MAY description )
-olcObjectClasses: {6}( 1.3.6.1.1.1.2.6 NAME 'ipHost' DESC 'Abstraction of a
- host, an IP device. The distinguished               value of the cn attribu
- te denotes the hosts canonical            name. Device SHOULD be used as a
- structural class' SUP top AUXILIARY MUST ( cn $ ipHostNumber ) MAY ( userPa
- ssword $ l $ description $ manager ) )
-olcObjectClasses: {7}( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' DESC 'Abstraction of
-  a network. The distinguished value of               the cn attribute denot
- es the network canonical name' SUP top STRUCTURAL MUST ipNetworkNumber MAY
- ( cn $ ipNetmaskNumber $ l $ description $ manager ) )
-olcObjectClasses: {8}( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' DESC 'Abstraction
- of a netgroup. May refer to other               netgroups' SUP top STRUCTUR
- AL MUST cn MAY ( nisNetgroupTriple $ memberNisNetgroup $ description ) )
-olcObjectClasses: {9}( 1.3.6.1.1.1.2.9 NAME 'nisMap' DESC 'A generic abstrac
- tion of a NIS map' SUP top STRUCTURAL MUST nisMapName MAY description )
-olcObjectClasses: {10}( 1.3.6.1.1.1.2.10 NAME 'nisObject' DESC 'An entry in
- a NIS map' SUP top STRUCTURAL MUST ( cn $ nisMapEntry $ nisMapName ) )
-olcObjectClasses: {11}( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' DESC 'A device
-  with a MAC address; device SHOULD be               used as a structural cl
- ass' SUP top AUXILIARY MAY macAddress )
-olcObjectClasses: {12}( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' DESC 'A devic
- e with boot parameters; device SHOULD be               used as a structural
-  class' SUP top AUXILIARY MAY ( bootFile $ bootParameter ) )
-olcObjectClasses: {13}( 1.3.6.1.1.1.2.14 NAME 'nisKeyObject' DESC 'An object
-  with a public and secret key' SUP top AUXILIARY MUST ( cn $ nisPublicKey $
-  nisSecretKey ) MAY ( uidNumber $ description ) )
-olcObjectClasses: {14}( 1.3.6.1.1.1.2.15 NAME 'nisDomainObject' DESC 'Associ
- ates a NIS domain with a naming context' SUP top AUXILIARY MUST nisDomain )
-olcObjectClasses: {15}( 1.3.6.1.1.1.2.16 NAME 'automountMap' SUP top STRUCTU
- RAL MUST automountMapName MAY description )
-olcObjectClasses: {16}( 1.3.6.1.1.1.2.17 NAME 'automount' DESC 'Automount in
- formation' SUP top STRUCTURAL MUST ( automountKey $ automountInformation )
- MAY description )
-olcObjectClasses: {17}( 1.3.6.1.1.1.2.18 NAME 'groupOfMembers' DESC 'A group
-  with members (DNs)' SUP top STRUCTURAL MUST cn MAY ( businessCategory $ se
- eAlso $ owner $ ou $ o $ description $ member ) )

docker-compose/test/images/openldap/service/slapd/assets/config/bootstrap/schema/rfc2307bis.schema

@@ -1,385 +0,0 @@
-#
-# rfc2307bis.schema
-#
-# Extracted from http://tools.ietf.org/id/draft-howard-rfc2307bis-02.txt
-# as of 2012/05/25, by Robin H. Johnson <robbat2@gentoo.org>
-# Found at http://dev.gentoo.org/~robbat2/distfiles/rfc2307bis.schema-20120525
-#
-# Changed so that OpenLDAP 2.4.39 is able to import the schema
-# on 2014/11/28 by Stijn Hoop <stijn@sandcat.nl>
-#
-#attributetype     ( 1.3.6.1.1.1.1.0 NAME 'uidNumber'
-#         DESC 'An integer uniquely identifying a user in an
-#               administrative domain'
-#         EQUALITY integerMatch
-#         ORDERING integerOrderingMatch
-#         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-#         SINGLE-VALUE )
-#
-#
-#attributetype     ( 1.3.6.1.1.1.1.1 NAME 'gidNumber'
-#         DESC 'An integer uniquely identifying a group in an
-#               administrative domain'
-#         EQUALITY integerMatch
-#         ORDERING integerOrderingMatch
-#         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-#         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.2 NAME 'gecos'
-         DESC 'The GECOS field; the common name'
-         EQUALITY caseIgnoreMatch
-         SUBSTR caseIgnoreSubstringsMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.3 NAME 'homeDirectory'
-         DESC 'The absolute path to the home directory'
-         EQUALITY caseExactIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.4 NAME 'loginShell'
-         DESC 'The path to the login shell'
-         EQUALITY caseExactIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-         SINGLE-VALUE )
-
-attributetype     ( 1.3.6.1.1.1.1.5 NAME 'shadowLastChange'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.6 NAME 'shadowMin'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.7 NAME 'shadowMax'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.8 NAME 'shadowWarning'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.9 NAME 'shadowInactive'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.10 NAME 'shadowExpire'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.11 NAME 'shadowFlag'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-
-
-attributetype     ( 1.3.6.1.1.1.1.12 NAME 'memberUid'
-         EQUALITY caseExactMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.13 NAME 'memberNisNetgroup'
-         EQUALITY caseExactMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.14 NAME 'nisNetgroupTriple'
-         DESC 'Netgroup triple'
-         EQUALITY caseIgnoreMatch
-         SUBSTR caseIgnoreSubstringsMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.15 NAME 'ipServicePort'
-         DESC 'Service port number'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.16 NAME 'ipServiceProtocol'
-         DESC 'Service protocol name'
-         EQUALITY caseIgnoreMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.17 NAME 'ipProtocolNumber'
-         DESC 'IP protocol number'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.18 NAME 'oncRpcNumber'
-         DESC 'ONC RPC number'
-         EQUALITY integerMatch
-         ORDERING integerOrderingMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
-         SINGLE-VALUE )
-
-
-
-
-
-
-
-
-attributetype     ( 1.3.6.1.1.1.1.19 NAME 'ipHostNumber'
-         DESC 'IPv4 addresses as a dotted decimal omitting leading
-               zeros or IPv6 addresses as defined in RFC2373'
-         EQUALITY caseIgnoreIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.20 NAME 'ipNetworkNumber'
-         DESC 'IP network omitting leading zeros, eg. 192.168'
-         EQUALITY caseIgnoreIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.21 NAME 'ipNetmaskNumber'
-         DESC 'IP netmask omitting leading zeros, eg. 255.255.255.0'
-         EQUALITY caseIgnoreIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.22 NAME 'macAddress'
-         DESC 'MAC address in maximal, colon separated hex
-               notation, eg. 00:00:92:90:ee:e2'
-         EQUALITY caseIgnoreIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.23 NAME 'bootParameter'
-         DESC 'rpc.bootparamd parameter'
-         EQUALITY caseExactIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.24 NAME 'bootFile'
-         DESC 'Boot image name'
-         EQUALITY caseExactIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
-
-
-attributetype     ( 1.3.6.1.1.1.1.26 NAME 'nisMapName'
-         DESC 'Name of a generic NIS map'
-         EQUALITY caseIgnoreMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{64} )
-
-
-
-
-
-
-
-
-
-attributetype     ( 1.3.6.1.1.1.1.27 NAME 'nisMapEntry'
-         DESC 'A generic NIS entry'
-         EQUALITY caseExactMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1024}
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.28 NAME 'nisPublicKey'
-         DESC 'NIS public key'
-         EQUALITY octetStringMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.40
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.29 NAME 'nisSecretKey'
-         DESC 'NIS secret key'
-         EQUALITY octetStringMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.40
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.30 NAME 'nisDomain'
-         DESC 'NIS domain'
-         EQUALITY caseIgnoreIA5Match
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{256} )
-
-
-attributetype     ( 1.3.6.1.1.1.1.31 NAME 'automountMapName'
-         DESC 'automount Map Name'
-         EQUALITY caseExactMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.32 NAME 'automountKey'
-         DESC 'Automount Key value'
-         EQUALITY caseExactMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-         SINGLE-VALUE )
-
-
-attributetype     ( 1.3.6.1.1.1.1.33 NAME 'automountInformation'
-         DESC 'Automount information'
-         EQUALITY caseExactMatch
-         SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
-         SINGLE-VALUE )
-
-
-
-objectclass     ( 1.3.6.1.1.1.2.0 NAME 'posixAccount' SUP top AUXILIARY
-         DESC 'Abstraction of an account with POSIX attributes'
-         MUST ( cn $ uid $ uidNumber $ gidNumber $ homeDirectory )
-         MAY ( userPassword $ loginShell $ gecos $
-               description ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.1 NAME 'shadowAccount' SUP top AUXILIARY
-         DESC 'Additional attributes for shadow passwords'
-         MUST uid
-         MAY ( userPassword $ description $
-               shadowLastChange $ shadowMin $ shadowMax $
-               shadowWarning $ shadowInactive $
-               shadowExpire $ shadowFlag ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.2 NAME 'posixGroup' SUP top AUXILIARY
-         DESC 'Abstraction of a group of accounts'
-         MUST gidNumber
-         MAY ( userPassword $ memberUid $
-               description ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.3 NAME 'ipService' SUP top STRUCTURAL
-         DESC 'Abstraction an Internet Protocol service.
-               Maps an IP port and protocol (such as tcp or udp)
-               to one or more names; the distinguished value of
-               the cn attribute denotes the services canonical
-               name'
-         MUST ( cn $ ipServicePort $ ipServiceProtocol )
-         MAY description )
-
-
-objectclass     ( 1.3.6.1.1.1.2.4 NAME 'ipProtocol' SUP top STRUCTURAL
-         DESC 'Abstraction of an IP protocol. Maps a protocol number
-               to one or more names. The distinguished value of the cn
-               attribute denotes the protocol canonical name'
-         MUST ( cn $ ipProtocolNumber )
-         MAY description )
-
-
-
-
-
-objectclass     ( 1.3.6.1.1.1.2.5 NAME 'oncRpc' SUP top STRUCTURAL
-         DESC 'Abstraction of an Open Network Computing (ONC)
-              [RFC1057] Remote Procedure Call (RPC) binding.
-              This class maps an ONC RPC number to a name.
-              The distinguished value of the cn attribute denotes
-              the RPC service canonical name'
-         MUST ( cn $ oncRpcNumber )
-         MAY description )
-
-
-objectclass     ( 1.3.6.1.1.1.2.6 NAME 'ipHost' SUP top AUXILIARY
-         DESC 'Abstraction of a host, an IP device. The distinguished
-               value of the cn attribute denotes the hosts canonical
-            name. Device SHOULD be used as a structural class'
-         MUST ( cn $ ipHostNumber )
-         MAY ( userPassword $ l $ description $
-               manager ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.7 NAME 'ipNetwork' SUP top STRUCTURAL
-         DESC 'Abstraction of a network. The distinguished value of
-               the cn attribute denotes the network canonical name'
-         MUST ipNetworkNumber
-         MAY ( cn $ ipNetmaskNumber $ l $ description $ manager ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.8 NAME 'nisNetgroup' SUP top STRUCTURAL
-         DESC 'Abstraction of a netgroup. May refer to other
-               netgroups'
-         MUST cn
-         MAY ( nisNetgroupTriple $ memberNisNetgroup $ description ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.9 NAME 'nisMap' SUP top STRUCTURAL
-         DESC 'A generic abstraction of a NIS map'
-         MUST nisMapName
-         MAY description )
-
-
-objectclass     ( 1.3.6.1.1.1.2.10 NAME 'nisObject' SUP top STRUCTURAL
-         DESC 'An entry in a NIS map'
-         MUST ( cn $ nisMapEntry $ nisMapName ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.11 NAME 'ieee802Device' SUP top AUXILIARY
-         DESC 'A device with a MAC address; device SHOULD be
-               used as a structural class'
-         MAY macAddress )
-
-
-
-
-
-objectclass     ( 1.3.6.1.1.1.2.12 NAME 'bootableDevice' SUP top AUXILIARY
-         DESC 'A device with boot parameters; device SHOULD be
-               used as a structural class'
-         MAY ( bootFile $ bootParameter ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.14 NAME 'nisKeyObject' SUP top AUXILIARY
-         DESC 'An object with a public and secret key'
-         MUST ( cn $ nisPublicKey $ nisSecretKey )
-         MAY ( uidNumber $ description ) )
-
-
-objectclass     ( 1.3.6.1.1.1.2.15 NAME 'nisDomainObject' SUP top AUXILIARY
-         DESC 'Associates a NIS domain with a naming context'
-         MUST nisDomain )
-
-
-objectclass     ( 1.3.6.1.1.1.2.16 NAME 'automountMap' SUP top STRUCTURAL
-         MUST ( automountMapName )
-         MAY description )
-
-
-objectclass     ( 1.3.6.1.1.1.2.17 NAME 'automount' SUP top STRUCTURAL
-         DESC 'Automount information'
-         MUST ( automountKey $ automountInformation )
-         MAY description )
-
-
-objectclass     ( 1.3.6.1.1.1.2.18 NAME 'groupOfMembers' SUP top STRUCTURAL
-         DESC 'A group with members (DNs)'
-         MUST cn
-         MAY ( businessCategory $ seeAlso $ owner $ ou $ o $
-               description $ member ) )

docker-compose/test/images/openldap/service/slapd/assets/config/replication/replication-disable.ldif

@@ -1,26 +0,0 @@
-# Delete sync replication on backend
-dn: olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: modify
-delete: olcSyncRepl
--
-delete: olcMirrorMode
-
-# Delete syncprov on backend
-dn: olcOverlay=syncprov,olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: delete
-
-# Delete sync replication on config
-dn: olcDatabase={0}config,cn=config
-changetype: modify
-delete: olcSyncRepl
--
-delete: olcMirrorMode
-
-# Delete syncprov on config
-dn: olcOverlay=syncprov,olcDatabase={0}config,cn=config
-changetype: delete
-
-# Delete server ID
-dn: cn=config
-changeType: modify
-delete: olcServerID

docker-compose/test/images/openldap/service/slapd/assets/config/replication/replication-enable.ldif

@@ -1,43 +0,0 @@
-# Load syncprov module
-dn: cn=module{0},cn=config
-changetype: modify
-add: olcModuleLoad
-olcModuleLoad: syncprov
-
-# Set server ID
-dn: cn=config
-changeType: modify
-add: olcServerID
-{{ LDAP_REPLICATION_HOSTS }}
-
-# Add syncprov on config
-dn: olcOverlay=syncprov,olcDatabase={0}config,cn=config
-changetype: add
-objectClass: olcOverlayConfig
-objectClass: olcSyncProvConfig
-olcOverlay: syncprov
-
-# Add sync replication on config
-dn: olcDatabase={0}config,cn=config
-changetype: modify
-add: olcSyncRepl
-{{ LDAP_REPLICATION_HOSTS_CONFIG_SYNC_REPL }}
--
-add: olcMirrorMode
-olcMirrorMode: TRUE
-
-# Add syncprov on backend
-dn: olcOverlay=syncprov,olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: add
-objectClass: olcOverlayConfig
-objectClass: olcSyncProvConfig
-olcOverlay: syncprov
-
-# Add sync replication on backend
-dn: olcDatabase={1}{{ LDAP_BACKEND }},cn=config
-changetype: modify
-add: olcSyncRepl
-{{ LDAP_REPLICATION_HOSTS_DB_SYNC_REPL }}
--
-add: olcMirrorMode
-olcMirrorMode: TRUE

docker-compose/test/images/openldap/service/slapd/assets/config/tls/tls-disable.ldif

@@ -1,13 +0,0 @@
-dn: cn=config
-changetype: modify
-delete: olcTLSCipherSuite
--
-delete: olcTLSCACertificateFile
--
-delete: olcTLSCertificateFile
--
-delete: olcTLSCertificateKeyFile
--
-delete: olcTLSDHParamFile
--
-delete: olcTLSVerifyClient

docker-compose/test/images/openldap/service/slapd/assets/config/tls/tls-enable.ldif

@@ -1,19 +0,0 @@
-dn: cn=config
-changetype: modify
-replace: olcTLSCipherSuite
-olcTLSCipherSuite: {{ LDAP_TLS_CIPHER_SUITE }}
--
-replace: olcTLSCACertificateFile
-olcTLSCACertificateFile: {{ LDAP_TLS_CA_CRT_PATH }}
--
-replace: olcTLSCertificateFile
-olcTLSCertificateFile: {{ LDAP_TLS_CRT_PATH }}
--
-replace: olcTLSCertificateKeyFile
-olcTLSCertificateKeyFile: {{ LDAP_TLS_KEY_PATH }}
--
-replace: olcTLSDHParamFile
-olcTLSDHParamFile: {{ LDAP_TLS_DH_PARAM_PATH }}
--
-replace: olcTLSVerifyClient
-olcTLSVerifyClient: {{ LDAP_TLS_VERIFY_CLIENT }}

docker-compose/test/images/openldap/service/slapd/assets/config/tls/tls-enforce-disable.ldif

@@ -1,5 +0,0 @@
-dn: cn=config
-changetype:  modify
-delete: olcSecurity
--
-delete: olcLocalSSF

docker-compose/test/images/openldap/service/slapd/assets/config/tls/tls-enforce-enable.ldif

@@ -1,7 +0,0 @@
-dn: cn=config
-changetype:  modify
-replace: olcSecurity
-olcSecurity: ssf=128
--
-replace: olcLocalSSF
-olcLocalSSF: 128

docker-compose/test/images/openldap/service/slapd/assets/schema-to-ldif.sh

@@ -1,65 +0,0 @@
-#!/bin/bash
-
-# set -x (bash debug) if log level is trace
-# https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/log-helper
-log-helper level eq trace && set -x
-
-SCHEMAS=$1
-
-tmpd=`mktemp -d`
-pushd ${tmpd} >>/dev/null
-
-echo "include /etc/ldap/schema/core.schema" >> convert.dat
-echo "include /etc/ldap/schema/cosine.schema" >> convert.dat
-echo "include /etc/ldap/schema/inetorgperson.schema" >> convert.dat
-
-if [ -e "/etc/ldap/schema/rfc2307bis.schema" ]; then
-  echo "include /etc/ldap/schema/rfc2307bis.schema" >> convert.dat
-else
-  echo "include /etc/ldap/schema/nis.schema" >> convert.dat
-fi
-
-
-for schema in ${SCHEMAS} ; do
-    echo "include ${schema}" >> convert.dat
-done
-
-slaptest -f convert.dat -F .
-
-if [ $? -ne 0 ] ; then
-    log-helper error "slaptest conversion failed"
-    exit
-fi
-
-for schema in ${SCHEMAS} ; do
-    fullpath=${schema}
-    schema_name=`basename ${fullpath} .schema`
-    schema_dir=`dirname ${fullpath}`
-    ldif_file=${schema_name}.ldif
-
-    if [ -e "${schema_dir}/${ldif_file}" ]; then
-      log-helper warning "${schema} ldif file ${schema_dir}/${ldif_file} already exists skipping conversion"
-      continue
-    fi
-
-    find . -name *\}${schema_name}.ldif -exec mv '{}' ./${ldif_file} \;
-
-    # TODO: these sed invocations could all be combined
-    sed -i "/dn:/ c dn: cn=${schema_name},cn=schema,cn=config" ${ldif_file}
-    sed -i "/cn:/ c cn: ${schema_name}" ${ldif_file}
-    sed -i '/structuralObjectClass/ d' ${ldif_file}
-    sed -i '/entryUUID/ d' ${ldif_file}
-    sed -i '/creatorsName/ d' ${ldif_file}
-    sed -i '/createTimestamp/ d' ${ldif_file}
-    sed -i '/entryCSN/ d' ${ldif_file}
-    sed -i '/modifiersName/ d' ${ldif_file}
-    sed -i '/modifyTimestamp/ d' ${ldif_file}
-
-    # slapd seems to be very sensitive to how a file ends. There should be no blank lines.
-    sed -i '/^ *$/d' ${ldif_file}
-
-    mv ${ldif_file} ${schema_dir}
-done
-
-popd >>/dev/null
-rm -rf $tmpd

docker-compose/test/images/openldap/service/slapd/assets/test/new-user.ldif

@@ -1,14 +0,0 @@
-dn: uid=billy,dc=example,dc=org
-uid: billy
-cn: billy
-sn: 3
-objectClass: top
-objectClass: posixAccount
-objectClass: inetOrgPerson
-loginShell: /bin/bash
-homeDirectory: /home/billy
-uidNumber: 14583102
-gidNumber: 14564100
-userPassword: {SSHA}j3lBh1Seqe4rqF1+NuWmjhvtAni1JC5A
-mail: billy@example.org
-gecos: Billy User

docker-compose/test/images/openldap/service/slapd/install.sh

@@ -1,5 +0,0 @@
-#!/bin/bash -e
-# this script is run during the image build
-
-# remove default ldap db
-rm -rf /var/lib/ldap /etc/ldap/slapd.d

docker-compose/test/images/openldap/service/slapd/process.sh

@@ -1,12 +0,0 @@
-#!/bin/bash -e
-
-# set -x (bash debug) if log level is trace
-# https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/log-helper
-log-helper level eq trace && set -x
-
-# Reduce maximum number of number of open file descriptors to 1024
-# otherwise slapd consumes two orders of magnitude more of RAM
-# see https://github.com/docker/docker/issues/8231
-ulimit -n 1024
-
-exec /usr/sbin/slapd -h "ldap://$HOSTNAME ldaps://$HOSTNAME ldapi:///" -u openldap -g openldap -d $LDAP_LOG_LEVEL

docker-compose/test/images/openldap/service/slapd/startup.sh

@@ -1,439 +0,0 @@
-#!/bin/bash -e
-set -o pipefail
-
-# set -x (bash debug) if log level is trace
-# https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/log-helper
-log-helper level eq trace && set -x
-
-# Reduce maximum number of number of open file descriptors to 1024
-# otherwise slapd consumes two orders of magnitude more of RAM
-# see https://github.com/docker/docker/issues/8231
-ulimit -n 1024
-
-# create dir if they not already exists
-[ -d /var/lib/ldap ] || mkdir -p /var/lib/ldap
-[ -d /etc/ldap/slapd.d ] || mkdir -p /etc/ldap/slapd.d
-
-# fix file permissions
-chown -R openldap:openldap /var/lib/ldap
-chown -R openldap:openldap /etc/ldap
-chown -R openldap:openldap ${CONTAINER_SERVICE_DIR}/slapd
-
-FIRST_START_DONE="${CONTAINER_STATE_DIR}/slapd-first-start-done"
-WAS_STARTED_WITH_TLS="/etc/ldap/slapd.d/docker-openldap-was-started-with-tls"
-WAS_STARTED_WITH_TLS_ENFORCE="/etc/ldap/slapd.d/docker-openldap-was-started-with-tls-enforce"
-WAS_STARTED_WITH_REPLICATION="/etc/ldap/slapd.d/docker-openldap-was-started-with-replication"
-
-LDAP_TLS_CA_CRT_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/$LDAP_TLS_CA_CRT_FILENAME"
-LDAP_TLS_CRT_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/$LDAP_TLS_CRT_FILENAME"
-LDAP_TLS_KEY_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/$LDAP_TLS_KEY_FILENAME"
-LDAP_TLS_DH_PARAM_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/dhparam.pem"
-
-
-# CONTAINER_SERVICE_DIR and CONTAINER_STATE_DIR variables are set by
-# the baseimage run tool more info : https://github.com/osixia/docker-light-baseimage
-
-# container first start
-if [ ! -e "$FIRST_START_DONE" ]; then
-
-  #
-  # Helpers
-  #
-  function get_ldap_base_dn() {
-    # if LDAP_BASE_DN is empty set value from LDAP_DOMAIN
-    if [ -z "$LDAP_BASE_DN" ]; then
-      IFS='.' read -ra LDAP_BASE_DN_TABLE <<< "$LDAP_DOMAIN"
-      for i in "${LDAP_BASE_DN_TABLE[@]}"; do
-        EXT="dc=$i,"
-        LDAP_BASE_DN=$LDAP_BASE_DN$EXT
-      done
-
-      LDAP_BASE_DN=${LDAP_BASE_DN::-1}
-    fi
-
-  }
-
-  function is_new_schema() {
-    local COUNT=$(ldapsearch -Q -Y EXTERNAL -H ldapi:/// -b cn=schema,cn=config cn | grep -c $1)
-    if [ "$COUNT" -eq 0 ]; then
-      echo 1
-    else
-      echo 0
-    fi
-  }
-
-  function ldap_add_or_modify (){
-    local LDIF_FILE=$1
-    sed -i "s|{{ LDAP_BASE_DN }}|${LDAP_BASE_DN}|g" $LDIF_FILE
-    sed -i "s|{{ LDAP_BACKEND }}|${LDAP_BACKEND}|g" $LDIF_FILE
-    if grep -iq changetype $LDIF_FILE ; then
-        ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f $LDIF_FILE 2>&1 | log-helper debug || ldapmodify -h localhost -p 389 -D cn=admin,$LDAP_BASE_DN -w $LDAP_ADMIN_PASSWORD -f $LDIF_FILE 2>&1 | log-helper debug
-    else
-        ldapadd -Y EXTERNAL -Q -H ldapi:/// -f $LDIF_FILE |& log-helper debug
-    fi
-  }
-
-  #
-  # Global variables
-  #
-  BOOTSTRAP=false
-
-  #
-  # database and config directory are empty
-  # setup bootstrap config - Part 1
-  #
-  if [ -z "$(ls -A -I lost+found /var/lib/ldap)" ] && [ -z "$(ls -A -I lost+found /etc/ldap/slapd.d)" ]; then
-
-    BOOTSTRAP=true
-    log-helper info "Database and config directory are empty..."
-    log-helper info "Init new ldap server..."
-
-    cat <<EOF | debconf-set-selections
-slapd slapd/internal/generated_adminpw password ${LDAP_ADMIN_PASSWORD}
-slapd slapd/internal/adminpw password ${LDAP_ADMIN_PASSWORD}
-slapd slapd/password2 password ${LDAP_ADMIN_PASSWORD}
-slapd slapd/password1 password ${LDAP_ADMIN_PASSWORD}
-slapd slapd/dump_database_destdir string /var/backups/slapd-VERSION
-slapd slapd/domain string ${LDAP_DOMAIN}
-slapd shared/organization string ${LDAP_ORGANISATION}
-slapd slapd/backend string ${LDAP_BACKEND^^}
-slapd slapd/purge_database boolean true
-slapd slapd/move_old_database boolean true
-slapd slapd/allow_ldap_v2 boolean false
-slapd slapd/no_configuration boolean false
-slapd slapd/dump_database select when needed
-EOF
-
-    dpkg-reconfigure -f noninteractive slapd
-
-    # RFC2307bis schema
-    if [ "${LDAP_RFC2307BIS_SCHEMA,,}" == "true" ]; then
-
-      log-helper info "Switching schema to RFC2307bis..."
-      cp ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/schema/rfc2307bis.* /etc/ldap/schema/
-
-      rm -f /etc/ldap/slapd.d/cn=config/cn=schema/*
-
-      mkdir -p /tmp/schema
-      slaptest -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/schema/rfc2307bis.conf -F /tmp/schema
-      mv /tmp/schema/cn=config/cn=schema/* /etc/ldap/slapd.d/cn=config/cn=schema
-      rm -r /tmp/schema
-
-      chown -R openldap:openldap /etc/ldap/slapd.d/cn=config/cn=schema
-    fi
-
-    rm ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/schema/rfc2307bis.*
-
-  #
-  # Error: the database directory (/var/lib/ldap) is empty but not the config directory (/etc/ldap/slapd.d)
-  #
-  elif [ -z "$(ls -A -I lost+found /var/lib/ldap)" ] && [ ! -z "$(ls -A -I lost+found /etc/ldap/slapd.d)" ]; then
-    log-helper error "Error: the database directory (/var/lib/ldap) is empty but not the config directory (/etc/ldap/slapd.d)"
-    exit 1
-
-  #
-  # Error: the config directory (/etc/ldap/slapd.d) is empty but not the database directory (/var/lib/ldap)
-  #
-  elif [ ! -z "$(ls -A -I lost+found /var/lib/ldap)" ] && [ -z "$(ls -A -I lost+found /etc/ldap/slapd.d)" ]; then
-    log-helper error "Error: the config directory (/etc/ldap/slapd.d) is empty but not the database directory (/var/lib/ldap)"
-    exit 1
-  fi
-
-  if [ "${KEEP_EXISTING_CONFIG,,}" == "true" ]; then
-    log-helper info "/!\ KEEP_EXISTING_CONFIG = true configration will not be updated"
-  else
-    #
-    # start OpenLDAP
-    #
-
-    # get previous hostname if OpenLDAP was started with replication
-    # to avoid configuration pbs
-    PREVIOUS_HOSTNAME_PARAM=""
-    if [ -e "$WAS_STARTED_WITH_REPLICATION" ]; then
-
-      source $WAS_STARTED_WITH_REPLICATION
-
-      # if previous hostname != current hostname
-      # set previous hostname to a loopback ip in /etc/hosts
-      if [ "$PREVIOUS_HOSTNAME" != "$HOSTNAME" ]; then
-        echo "127.0.0.2 $PREVIOUS_HOSTNAME" >> /etc/hosts
-        PREVIOUS_HOSTNAME_PARAM="ldap://$PREVIOUS_HOSTNAME"
-      fi
-    fi
-
-    # if the config was bootstraped with TLS
-    # to avoid error (#6) (#36) and (#44)
-    # we create fake temporary certificates if they do not exists
-    if [ -e "$WAS_STARTED_WITH_TLS" ]; then
-      source $WAS_STARTED_WITH_TLS
-
-      log-helper debug "Check previous TLS certificates..."
-
-      # fix for #73
-      # image started with an existing database/config created before 1.1.5
-      [[ -z "$PREVIOUS_LDAP_TLS_CA_CRT_PATH" ]] && PREVIOUS_LDAP_TLS_CA_CRT_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/$LDAP_TLS_CA_CRT_FILENAME"
-      [[ -z "$PREVIOUS_LDAP_TLS_CRT_PATH" ]] && PREVIOUS_LDAP_TLS_CRT_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/$LDAP_TLS_CRT_FILENAME"
-      [[ -z "$PREVIOUS_LDAP_TLS_KEY_PATH" ]] && PREVIOUS_LDAP_TLS_KEY_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/$LDAP_TLS_KEY_FILENAME"
-      [[ -z "$PREVIOUS_LDAP_TLS_DH_PARAM_PATH" ]] && PREVIOUS_LDAP_TLS_DH_PARAM_PATH="${CONTAINER_SERVICE_DIR}/slapd/assets/certs/dhparam.pem"
-
-      ssl-helper $LDAP_SSL_HELPER_PREFIX $PREVIOUS_LDAP_TLS_CRT_PATH $PREVIOUS_LDAP_TLS_KEY_PATH $PREVIOUS_LDAP_TLS_CA_CRT_PATH
-      [ -f ${PREVIOUS_LDAP_TLS_DH_PARAM_PATH} ] || openssl dhparam -out ${LDAP_TLS_DH_PARAM_PATH} 2048
-
-      chmod 600 ${PREVIOUS_LDAP_TLS_DH_PARAM_PATH}
-      chown openldap:openldap $PREVIOUS_LDAP_TLS_CRT_PATH $PREVIOUS_LDAP_TLS_KEY_PATH $PREVIOUS_LDAP_TLS_CA_CRT_PATH $PREVIOUS_LDAP_TLS_DH_PARAM_PATH
-    fi
-
-    # start OpenLDAP
-    log-helper info "Start OpenLDAP..."
-
-    if log-helper level ge debug; then
-      slapd -h "ldap://$HOSTNAME $PREVIOUS_HOSTNAME_PARAM ldap://localhost ldapi:///" -u openldap -g openldap -d $LDAP_LOG_LEVEL 2>&1 &
-    else
-      slapd -h "ldap://$HOSTNAME $PREVIOUS_HOSTNAME_PARAM ldap://localhost ldapi:///" -u openldap -g openldap
-    fi
-
-
-    log-helper info "Waiting for OpenLDAP to start..."
-    while [ ! -e /run/slapd/slapd.pid ]; do sleep 0.1; done
-
-    #
-    # setup bootstrap config - Part 2
-    #
-    if $BOOTSTRAP; then
-
-      log-helper info "Add bootstrap schemas..."
-
-      # add ppolicy schema
-      ldapadd -c -Y EXTERNAL -Q -H ldapi:/// -f /etc/ldap/schema/ppolicy.ldif 2>&1 | log-helper debug
-
-      # convert schemas to ldif
-      SCHEMAS=""
-      for f in $(find ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/schema -name \*.schema -type f); do
-        SCHEMAS="$SCHEMAS ${f}"
-      done
-      ${CONTAINER_SERVICE_DIR}/slapd/assets/schema-to-ldif.sh "$SCHEMAS"
-
-      # add converted schemas
-      for f in $(find ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/schema -name \*.ldif -type f); do
-        log-helper debug "Processing file ${f}"
-        # add schema if not already exists
-        SCHEMA=$(basename "${f}" .ldif)
-        ADD_SCHEMA=$(is_new_schema $SCHEMA)
-        if [ "$ADD_SCHEMA" -eq 1 ]; then
-          ldapadd -c -Y EXTERNAL -Q -H ldapi:/// -f $f 2>&1 | log-helper debug
-        else
-          log-helper info "schema ${f} already exists"
-        fi
-      done
-
-      # set config password
-      LDAP_CONFIG_PASSWORD_ENCRYPTED=$(slappasswd -s $LDAP_CONFIG_PASSWORD)
-      sed -i "s|{{ LDAP_CONFIG_PASSWORD_ENCRYPTED }}|${LDAP_CONFIG_PASSWORD_ENCRYPTED}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/01-config-password.ldif
-
-      # adapt security config file
-      get_ldap_base_dn
-      sed -i "s|{{ LDAP_BASE_DN }}|${LDAP_BASE_DN}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/02-security.ldif
-
-      # process config files (*.ldif) in bootstrap directory (do no process files in subdirectories)
-      log-helper info "Add image bootstrap ldif..."
-      for f in $(find ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif -mindepth 1 -maxdepth 1 -type f -name \*.ldif  | sort); do
-        log-helper debug "Processing file ${f}"
-        ldap_add_or_modify "$f"
-      done
-
-      log-helper info "Add custom bootstrap ldif..."
-      for f in $(find ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/custom -type f -name \*.ldif  | sort); do
-        log-helper debug "Processing file ${f}"
-        ldap_add_or_modify "$f"
-      done
-
-      # read only user
-      if [ "${LDAP_READONLY_USER,,}" == "true" ]; then
-
-        log-helper info "Add read only user..."
-
-        LDAP_READONLY_USER_PASSWORD_ENCRYPTED=$(slappasswd -s $LDAP_READONLY_USER_PASSWORD)
-        sed -i "s|{{ LDAP_READONLY_USER_USERNAME }}|${LDAP_READONLY_USER_USERNAME}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user.ldif
-        sed -i "s|{{ LDAP_READONLY_USER_PASSWORD_ENCRYPTED }}|${LDAP_READONLY_USER_PASSWORD_ENCRYPTED}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user.ldif
-        sed -i "s|{{ LDAP_BASE_DN }}|${LDAP_BASE_DN}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user.ldif
-
-        sed -i "s|{{ LDAP_READONLY_USER_USERNAME }}|${LDAP_READONLY_USER_USERNAME}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user-acl.ldif
-        sed -i "s|{{ LDAP_BASE_DN }}|${LDAP_BASE_DN}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user-acl.ldif
-
-        sed -i "s|{{ LDAP_BACKEND }}|${LDAP_BACKEND}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user-acl.ldif
-
-        log-helper debug "Processing file ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user.ldif"
-        ldapmodify -h localhost -p 389 -D cn=admin,$LDAP_BASE_DN -w $LDAP_ADMIN_PASSWORD -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user.ldif 2>&1 | log-helper debug
-
-        log-helper debug "Processing file ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user-acl.ldif"
-        ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/bootstrap/ldif/readonly-user/readonly-user-acl.ldif 2>&1 | log-helper debug
-
-      fi
-    fi
-
-    #
-    # TLS config
-    #
-    if [ -e "$WAS_STARTED_WITH_TLS" ] && [ "${LDAP_TLS,,}" != "true" ]; then
-      log-helper error "/!\ WARNING: LDAP_TLS=false but the container was previously started with LDAP_TLS=true"
-      log-helper error "TLS can't be disabled once added. Ignoring LDAP_TLS=false."
-      LDAP_TLS=true
-    fi
-
-    if [ -e "$WAS_STARTED_WITH_TLS_ENFORCE" ] && [ "${LDAP_TLS_ENFORCE,,}" != "true" ]; then
-      log-helper error "/!\ WARNING: LDAP_TLS_ENFORCE=false but the container was previously started with LDAP_TLS_ENFORCE=true"
-      log-helper error "TLS enforcing can't be disabled once added. Ignoring LDAP_TLS_ENFORCE=false."
-      LDAP_TLS_ENFORCE=true
-    fi
-
-    if [ "${LDAP_TLS,,}" == "true" ]; then
-
-      log-helper info "Add TLS config..."
-
-      # generate a certificate and key with ssl-helper tool if LDAP_CRT and LDAP_KEY files don't exists
-      # https://github.com/osixia/docker-light-baseimage/blob/stable/image/service-available/:ssl-tools/assets/tool/ssl-helper
-      ssl-helper $LDAP_SSL_HELPER_PREFIX $LDAP_TLS_CRT_PATH $LDAP_TLS_KEY_PATH $LDAP_TLS_CA_CRT_PATH
-
-      # create DHParamFile if not found
-      [ -f ${LDAP_TLS_DH_PARAM_PATH} ] || openssl dhparam -out ${LDAP_TLS_DH_PARAM_PATH} 2048
-      chmod 600 ${LDAP_TLS_DH_PARAM_PATH}
-
-      # fix file permissions
-      chown -R openldap:openldap ${CONTAINER_SERVICE_DIR}/slapd
-
-      # adapt tls ldif
-      sed -i "s|{{ LDAP_TLS_CA_CRT_PATH }}|${LDAP_TLS_CA_CRT_PATH}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif
-      sed -i "s|{{ LDAP_TLS_CRT_PATH }}|${LDAP_TLS_CRT_PATH}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif
-      sed -i "s|{{ LDAP_TLS_KEY_PATH }}|${LDAP_TLS_KEY_PATH}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif
-      sed -i "s|{{ LDAP_TLS_DH_PARAM_PATH }}|${LDAP_TLS_DH_PARAM_PATH}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif
-
-      sed -i "s|{{ LDAP_TLS_CIPHER_SUITE }}|${LDAP_TLS_CIPHER_SUITE}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif
-      sed -i "s|{{ LDAP_TLS_VERIFY_CLIENT }}|${LDAP_TLS_VERIFY_CLIENT}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif
-
-      ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enable.ldif 2>&1 | log-helper debug
-
-      [[ -f "$WAS_STARTED_WITH_TLS" ]] && rm -f "$WAS_STARTED_WITH_TLS"
-      echo "export PREVIOUS_LDAP_TLS_CA_CRT_PATH=${LDAP_TLS_CA_CRT_PATH}" > $WAS_STARTED_WITH_TLS
-      echo "export PREVIOUS_LDAP_TLS_CRT_PATH=${LDAP_TLS_CRT_PATH}" >> $WAS_STARTED_WITH_TLS
-      echo "export PREVIOUS_LDAP_TLS_KEY_PATH=${LDAP_TLS_KEY_PATH}" >> $WAS_STARTED_WITH_TLS
-      echo "export PREVIOUS_LDAP_TLS_DH_PARAM_PATH=${LDAP_TLS_DH_PARAM_PATH}" >> $WAS_STARTED_WITH_TLS
-
-      # enforce TLS
-      if [ "${LDAP_TLS_ENFORCE,,}" == "true" ]; then
-        log-helper info "Add enforce TLS..."
-        ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enforce-enable.ldif 2>&1 | log-helper debug
-        touch $WAS_STARTED_WITH_TLS_ENFORCE
-
-      # disable tls enforcing (not possible for now)
-      #else
-        #log-helper info "Disable enforce TLS..."
-        #ldapmodify -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-enforce-disable.ldif 2>&1 | log-helper debug || true
-        #[[ -f "$WAS_STARTED_WITH_TLS_ENFORCE" ]] && rm -f "$WAS_STARTED_WITH_TLS_ENFORCE"
-      fi
-
-    # disable tls (not possible for now)
-    #else
-      #log-helper info "Disable TLS config..."
-      #ldapmodify -c -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/tls/tls-disable.ldif 2>&1 | log-helper debug || true
-      #[[ -f "$WAS_STARTED_WITH_TLS" ]] && rm -f "$WAS_STARTED_WITH_TLS"
-    fi
-
-
-
-    #
-    # Replication config
-    #
-
-    function disableReplication() {
-      sed -i "s|{{ LDAP_BACKEND }}|${LDAP_BACKEND}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-disable.ldif
-      ldapmodify -c -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-disable.ldif 2>&1 | log-helper debug || true
-      [[ -f "$WAS_STARTED_WITH_REPLICATION" ]] && rm -f "$WAS_STARTED_WITH_REPLICATION"
-    }
-
-    if [ "${LDAP_REPLICATION,,}" == "true" ]; then
-
-      log-helper info "Add replication config..."
-      disableReplication || true
-
-      i=1
-      for host in $(complex-bash-env iterate LDAP_REPLICATION_HOSTS)
-      do
-        sed -i "s|{{ LDAP_REPLICATION_HOSTS }}|olcServerID: $i ${!host}\n{{ LDAP_REPLICATION_HOSTS }}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-        sed -i "s|{{ LDAP_REPLICATION_HOSTS_CONFIG_SYNC_REPL }}|olcSyncRepl: rid=00$i provider=${!host} ${LDAP_REPLICATION_CONFIG_SYNCPROV}\n{{ LDAP_REPLICATION_HOSTS_CONFIG_SYNC_REPL }}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-        sed -i "s|{{ LDAP_REPLICATION_HOSTS_DB_SYNC_REPL }}|olcSyncRepl: rid=10$i provider=${!host} ${LDAP_REPLICATION_DB_SYNCPROV}\n{{ LDAP_REPLICATION_HOSTS_DB_SYNC_REPL }}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-
-        ((i++))
-      done
-
-      get_ldap_base_dn
-      sed -i "s|\$LDAP_BASE_DN|$LDAP_BASE_DN|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-      sed -i "s|\$LDAP_ADMIN_PASSWORD|$LDAP_ADMIN_PASSWORD|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-      sed -i "s|\$LDAP_CONFIG_PASSWORD|$LDAP_CONFIG_PASSWORD|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-
-      sed -i "/{{ LDAP_REPLICATION_HOSTS }}/d" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-      sed -i "/{{ LDAP_REPLICATION_HOSTS_CONFIG_SYNC_REPL }}/d" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-      sed -i "/{{ LDAP_REPLICATION_HOSTS_DB_SYNC_REPL }}/d" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-
-      sed -i "s|{{ LDAP_BACKEND }}|${LDAP_BACKEND}|g" ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif
-
-      ldapmodify -c -Y EXTERNAL -Q -H ldapi:/// -f ${CONTAINER_SERVICE_DIR}/slapd/assets/config/replication/replication-enable.ldif 2>&1 | log-helper debug || true
-
-      [[ -f "$WAS_STARTED_WITH_REPLICATION" ]] && rm -f "$WAS_STARTED_WITH_REPLICATION"
-      echo "export PREVIOUS_HOSTNAME=${HOSTNAME}" > $WAS_STARTED_WITH_REPLICATION
-
-    else
-
-      log-helper info "Disable replication config..."
-      disableReplication || true
-
-    fi
-
-    #
-    # stop OpenLDAP
-    #
-    log-helper info "Stop OpenLDAP..."
-
-    SLAPD_PID=$(cat /run/slapd/slapd.pid)
-    kill -15 $SLAPD_PID
-    while [ -e /proc/$SLAPD_PID ]; do sleep 0.1; done # wait until slapd is terminated
-  fi
-
-  #
-  # ldap client config
-  #
-  if [ "${LDAP_TLS,,}" == "true" ]; then
-    log-helper info "Configure ldap client TLS configuration..."
-    sed -i --follow-symlinks "s,TLS_CACERT.*,TLS_CACERT ${LDAP_TLS_CA_CRT_PATH},g" /etc/ldap/ldap.conf
-    echo "TLS_REQCERT ${LDAP_TLS_VERIFY_CLIENT}" >> /etc/ldap/ldap.conf
-    cp -f /etc/ldap/ldap.conf ${CONTAINER_SERVICE_DIR}/slapd/assets/ldap.conf
-
-    [[ -f "$HOME/.ldaprc" ]] && rm -f $HOME/.ldaprc
-    echo "TLS_CERT ${LDAP_TLS_CRT_PATH}" > $HOME/.ldaprc
-    echo "TLS_KEY ${LDAP_TLS_KEY_PATH}" >> $HOME/.ldaprc
-    cp -f $HOME/.ldaprc ${CONTAINER_SERVICE_DIR}/slapd/assets/.ldaprc
-  fi
-
-  #
-  # remove container config files
-  #
-  if [ "${LDAP_REMOVE_CONFIG_AFTER_SETUP,,}" == "true" ]; then
-    log-helper info "Remove config files..."
-    rm -rf ${CONTAINER_SERVICE_DIR}/slapd/assets/config
-  fi
-
-  #
-  # setup done :)
-  #
-  log-helper info "First start is done..."
-  touch $FIRST_START_DONE
-fi
-
-ln -sf ${CONTAINER_SERVICE_DIR}/slapd/assets/.ldaprc $HOME/.ldaprc
-ln -sf ${CONTAINER_SERVICE_DIR}/slapd/assets/ldap.conf /etc/ldap/ldap.conf
-
-# force OpenLDAP to listen on all interfaces
-ETC_HOSTS=$(cat /etc/hosts | sed "/$HOSTNAME/d")
-echo "0.0.0.0 $HOSTNAME" > /etc/hosts
-echo "$ETC_HOSTS" >> /etc/hosts
-
-exit 0

docker-compose/test/images/openldap/service/slapd/test.sh

@@ -1,7 +0,0 @@
-#!/bin/bash -e
-
-# Copy testing data to their respective directories on an as-needed basis
-mkdir -p /var/lib/ldap
-mkdir -p /etc/ldap/slapd.d
-cp -rf /container/test/database/* /var/lib/ldap/ || true
-cp -rf /container/test/config/* /etc/ldap/slapd.d/ || true

docker-compose/test/limesurvey_testdata/limesurvey_survey_241646.lss

@@ -1,327 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<document>
- <LimeSurveyDocType>Survey</LimeSurveyDocType>
- <DBVersion>263</DBVersion>
- <languages>
-  <language>en</language>
- </languages>
- <groups>
-  <fields>
-   <fieldname>gid</fieldname>
-   <fieldname>sid</fieldname>
-   <fieldname>group_name</fieldname>
-   <fieldname>group_order</fieldname>
-   <fieldname>description</fieldname>
-   <fieldname>language</fieldname>
-   <fieldname>randomization_group</fieldname>
-   <fieldname>grelevance</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <gid><![CDATA[2]]></gid>
-    <sid><![CDATA[241646]]></sid>
-    <group_name><![CDATA[Group1]]></group_name>
-    <group_order><![CDATA[0]]></group_order>
-    <description/>
-    <language><![CDATA[en]]></language>
-    <randomization_group/>
-    <grelevance/>
-   </row>
-  </rows>
- </groups>
- <questions>
-  <fields>
-   <fieldname>qid</fieldname>
-   <fieldname>parent_qid</fieldname>
-   <fieldname>sid</fieldname>
-   <fieldname>gid</fieldname>
-   <fieldname>type</fieldname>
-   <fieldname>title</fieldname>
-   <fieldname>question</fieldname>
-   <fieldname>preg</fieldname>
-   <fieldname>help</fieldname>
-   <fieldname>other</fieldname>
-   <fieldname>mandatory</fieldname>
-   <fieldname>question_order</fieldname>
-   <fieldname>language</fieldname>
-   <fieldname>scale_id</fieldname>
-   <fieldname>same_default</fieldname>
-   <fieldname>relevance</fieldname>
-   <fieldname>modulename</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <qid><![CDATA[2]]></qid>
-    <parent_qid><![CDATA[0]]></parent_qid>
-    <sid><![CDATA[241646]]></sid>
-    <gid><![CDATA[2]]></gid>
-    <type><![CDATA[T]]></type>
-    <title><![CDATA[question1]]></title>
-    <question><![CDATA[What's your name?]]></question>
-    <preg/>
-    <help/>
-    <other><![CDATA[N]]></other>
-    <mandatory><![CDATA[N]]></mandatory>
-    <question_order><![CDATA[1]]></question_order>
-    <language><![CDATA[en]]></language>
-    <scale_id><![CDATA[0]]></scale_id>
-    <same_default><![CDATA[0]]></same_default>
-    <relevance><![CDATA[1]]></relevance>
-   </row>
-  </rows>
- </questions>
- <surveys>
-  <fields>
-   <fieldname>sid</fieldname>
-   <fieldname>admin</fieldname>
-   <fieldname>expires</fieldname>
-   <fieldname>startdate</fieldname>
-   <fieldname>adminemail</fieldname>
-   <fieldname>anonymized</fieldname>
-   <fieldname>faxto</fieldname>
-   <fieldname>format</fieldname>
-   <fieldname>savetimings</fieldname>
-   <fieldname>template</fieldname>
-   <fieldname>language</fieldname>
-   <fieldname>additional_languages</fieldname>
-   <fieldname>datestamp</fieldname>
-   <fieldname>usecookie</fieldname>
-   <fieldname>allowregister</fieldname>
-   <fieldname>allowsave</fieldname>
-   <fieldname>autonumber_start</fieldname>
-   <fieldname>autoredirect</fieldname>
-   <fieldname>allowprev</fieldname>
-   <fieldname>printanswers</fieldname>
-   <fieldname>ipaddr</fieldname>
-   <fieldname>refurl</fieldname>
-   <fieldname>publicstatistics</fieldname>
-   <fieldname>publicgraphs</fieldname>
-   <fieldname>listpublic</fieldname>
-   <fieldname>htmlemail</fieldname>
-   <fieldname>sendconfirmation</fieldname>
-   <fieldname>tokenanswerspersistence</fieldname>
-   <fieldname>assessments</fieldname>
-   <fieldname>usecaptcha</fieldname>
-   <fieldname>usetokens</fieldname>
-   <fieldname>bounce_email</fieldname>
-   <fieldname>attributedescriptions</fieldname>
-   <fieldname>emailresponseto</fieldname>
-   <fieldname>emailnotificationto</fieldname>
-   <fieldname>tokenlength</fieldname>
-   <fieldname>showxquestions</fieldname>
-   <fieldname>showgroupinfo</fieldname>
-   <fieldname>shownoanswer</fieldname>
-   <fieldname>showqnumcode</fieldname>
-   <fieldname>bouncetime</fieldname>
-   <fieldname>bounceprocessing</fieldname>
-   <fieldname>bounceaccounttype</fieldname>
-   <fieldname>bounceaccounthost</fieldname>
-   <fieldname>bounceaccountpass</fieldname>
-   <fieldname>bounceaccountencryption</fieldname>
-   <fieldname>bounceaccountuser</fieldname>
-   <fieldname>showwelcome</fieldname>
-   <fieldname>showprogress</fieldname>
-   <fieldname>questionindex</fieldname>
-   <fieldname>navigationdelay</fieldname>
-   <fieldname>nokeyboard</fieldname>
-   <fieldname>alloweditaftercompletion</fieldname>
-   <fieldname>googleanalyticsstyle</fieldname>
-   <fieldname>googleanalyticsapikey</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <sid><![CDATA[241646]]></sid>
-    <admin><![CDATA[Administrator]]></admin>
-    <adminemail><![CDATA[your-email@example.net]]></adminemail>
-    <anonymized><![CDATA[N]]></anonymized>
-    <faxto/>
-    <format><![CDATA[G]]></format>
-    <savetimings><![CDATA[N]]></savetimings>
-    <template><![CDATA[default]]></template>
-    <language><![CDATA[en]]></language>
-    <additional_languages/>
-    <datestamp><![CDATA[N]]></datestamp>
-    <usecookie><![CDATA[N]]></usecookie>
-    <allowregister><![CDATA[N]]></allowregister>
-    <allowsave><![CDATA[Y]]></allowsave>
-    <autonumber_start><![CDATA[0]]></autonumber_start>
-    <autoredirect><![CDATA[N]]></autoredirect>
-    <allowprev><![CDATA[N]]></allowprev>
-    <printanswers><![CDATA[N]]></printanswers>
-    <ipaddr><![CDATA[N]]></ipaddr>
-    <refurl><![CDATA[N]]></refurl>
-    <publicstatistics><![CDATA[N]]></publicstatistics>
-    <publicgraphs><![CDATA[N]]></publicgraphs>
-    <listpublic><![CDATA[N]]></listpublic>
-    <htmlemail><![CDATA[Y]]></htmlemail>
-    <sendconfirmation><![CDATA[Y]]></sendconfirmation>
-    <tokenanswerspersistence><![CDATA[N]]></tokenanswerspersistence>
-    <assessments><![CDATA[N]]></assessments>
-    <usecaptcha><![CDATA[N]]></usecaptcha>
-    <usetokens><![CDATA[N]]></usetokens>
-    <bounce_email><![CDATA[your-email@example.net]]></bounce_email>
-    <emailresponseto/>
-    <emailnotificationto/>
-    <tokenlength><![CDATA[15]]></tokenlength>
-    <showxquestions><![CDATA[Y]]></showxquestions>
-    <showgroupinfo><![CDATA[B]]></showgroupinfo>
-    <shownoanswer><![CDATA[N]]></shownoanswer>
-    <showqnumcode><![CDATA[X]]></showqnumcode>
-    <bounceprocessing><![CDATA[N]]></bounceprocessing>
-    <showwelcome><![CDATA[Y]]></showwelcome>
-    <showprogress><![CDATA[Y]]></showprogress>
-    <questionindex><![CDATA[0]]></questionindex>
-    <navigationdelay><![CDATA[0]]></navigationdelay>
-    <nokeyboard><![CDATA[N]]></nokeyboard>
-    <alloweditaftercompletion><![CDATA[N]]></alloweditaftercompletion>
-   </row>
-  </rows>
- </surveys>
- <surveys_languagesettings>
-  <fields>
-   <fieldname>surveyls_survey_id</fieldname>
-   <fieldname>surveyls_language</fieldname>
-   <fieldname>surveyls_title</fieldname>
-   <fieldname>surveyls_description</fieldname>
-   <fieldname>surveyls_welcometext</fieldname>
-   <fieldname>surveyls_endtext</fieldname>
-   <fieldname>surveyls_url</fieldname>
-   <fieldname>surveyls_urldescription</fieldname>
-   <fieldname>surveyls_email_invite_subj</fieldname>
-   <fieldname>surveyls_email_invite</fieldname>
-   <fieldname>surveyls_email_remind_subj</fieldname>
-   <fieldname>surveyls_email_remind</fieldname>
-   <fieldname>surveyls_email_register_subj</fieldname>
-   <fieldname>surveyls_email_register</fieldname>
-   <fieldname>surveyls_email_confirm_subj</fieldname>
-   <fieldname>surveyls_email_confirm</fieldname>
-   <fieldname>surveyls_dateformat</fieldname>
-   <fieldname>surveyls_attributecaptions</fieldname>
-   <fieldname>email_admin_notification_subj</fieldname>
-   <fieldname>email_admin_notification</fieldname>
-   <fieldname>email_admin_responses_subj</fieldname>
-   <fieldname>email_admin_responses</fieldname>
-   <fieldname>surveyls_numberformat</fieldname>
-   <fieldname>attachments</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <surveyls_survey_id><![CDATA[241646]]></surveyls_survey_id>
-    <surveyls_language><![CDATA[en]]></surveyls_language>
-    <surveyls_title><![CDATA[TestSurveyWithParticipants]]></surveyls_title>
-    <surveyls_description/>
-    <surveyls_welcometext/>
-    <surveyls_endtext/>
-    <surveyls_url/>
-    <surveyls_urldescription/>
-    <surveyls_email_invite_subj><![CDATA[Invitation to participate in a survey]]></surveyls_email_invite_subj>
-    <surveyls_email_invite><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-you have been invited to participate in a survey.<br />
-<br />
-The survey is titled:<br />
-"{SURVEYNAME}"<br />
-<br />
-"{SURVEYDESCRIPTION}"<br />
-<br />
-To participate, please click on the link below.<br />
-<br />
-Sincerely,<br />
-<br />
-{ADMINNAME} ({ADMINEMAIL})<br />
-<br />
-----------------------------------------------<br />
-Click here to do the survey:<br />
-{SURVEYURL}<br />
-<br />
-If you do not want to participate in this survey and don't want to receive any more invitations please click the following link:<br />
-{OPTOUTURL}<br />
-<br />
-If you are blacklisted but want to participate in this survey and want to receive invitations please click the following link:<br />
-{OPTINURL}]]></surveyls_email_invite>
-    <surveyls_email_remind_subj><![CDATA[Reminder to participate in a survey]]></surveyls_email_remind_subj>
-    <surveyls_email_remind><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-Recently we invited you to participate in a survey.<br />
-<br />
-We note that you have not yet completed the survey, and wish to remind you that the survey is still available should you wish to take part.<br />
-<br />
-The survey is titled:<br />
-"{SURVEYNAME}"<br />
-<br />
-"{SURVEYDESCRIPTION}"<br />
-<br />
-To participate, please click on the link below.<br />
-<br />
-Sincerely,<br />
-<br />
-{ADMINNAME} ({ADMINEMAIL})<br />
-<br />
-----------------------------------------------<br />
-Click here to do the survey:<br />
-{SURVEYURL}<br />
-<br />
-If you do not want to participate in this survey and don't want to receive any more invitations please click the following link:<br />
-{OPTOUTURL}]]></surveyls_email_remind>
-    <surveyls_email_register_subj><![CDATA[Survey registration confirmation]]></surveyls_email_register_subj>
-    <surveyls_email_register><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-You, or someone using your email address, have registered to participate in an online survey titled {SURVEYNAME}.<br />
-<br />
-To complete this survey, click on the following URL:<br />
-<br />
-{SURVEYURL}<br />
-<br />
-If you have any questions about this survey, or if you did not register to participate and believe this email is in error, please contact {ADMINNAME} at {ADMINEMAIL}.]]></surveyls_email_register>
-    <surveyls_email_confirm_subj><![CDATA[Confirmation of your participation in our survey]]></surveyls_email_confirm_subj>
-    <surveyls_email_confirm><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-this email is to confirm that you have completed the survey titled {SURVEYNAME} and your response has been saved. Thank you for participating.<br />
-<br />
-If you have any further questions about this email, please contact {ADMINNAME} on {ADMINEMAIL}.<br />
-<br />
-Sincerely,<br />
-<br />
-{ADMINNAME}]]></surveyls_email_confirm>
-    <surveyls_dateformat><![CDATA[9]]></surveyls_dateformat>
-    <email_admin_notification_subj><![CDATA[Response submission for survey {SURVEYNAME}]]></email_admin_notification_subj>
-    <email_admin_notification><![CDATA[Hello,<br />
-<br />
-A new response was submitted for your survey '{SURVEYNAME}'.<br />
-<br />
-Click the following link to reload the survey:<br />
-{RELOADURL}<br />
-<br />
-Click the following link to see the individual response:<br />
-{VIEWRESPONSEURL}<br />
-<br />
-Click the following link to edit the individual response:<br />
-{EDITRESPONSEURL}<br />
-<br />
-View statistics by clicking here:<br />
-{STATISTICSURL}]]></email_admin_notification>
-    <email_admin_responses_subj><![CDATA[Response submission for survey {SURVEYNAME} with results]]></email_admin_responses_subj>
-    <email_admin_responses><![CDATA[Hello,<br />
-<br />
-A new response was submitted for your survey '{SURVEYNAME}'.<br />
-<br />
-Click the following link to reload the survey:<br />
-{RELOADURL}<br />
-<br />
-Click the following link to see the individual response:<br />
-{VIEWRESPONSEURL}<br />
-<br />
-Click the following link to edit the individual response:<br />
-{EDITRESPONSEURL}<br />
-<br />
-View statistics by clicking here:<br />
-{STATISTICSURL}<br />
-<br />
-<br />
-The following answers were given by the participant:<br />
-{ANSWERTABLE}]]></email_admin_responses>
-    <surveyls_numberformat><![CDATA[0]]></surveyls_numberformat>
-   </row>
-  </rows>
- </surveys_languagesettings>
-</document>

docker-compose/test/limesurvey_testdata/limesurvey_survey_537264.lss

@@ -1,327 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<document>
- <LimeSurveyDocType>Survey</LimeSurveyDocType>
- <DBVersion>263</DBVersion>
- <languages>
-  <language>en</language>
- </languages>
- <groups>
-  <fields>
-   <fieldname>gid</fieldname>
-   <fieldname>sid</fieldname>
-   <fieldname>group_name</fieldname>
-   <fieldname>group_order</fieldname>
-   <fieldname>description</fieldname>
-   <fieldname>language</fieldname>
-   <fieldname>randomization_group</fieldname>
-   <fieldname>grelevance</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <gid><![CDATA[1]]></gid>
-    <sid><![CDATA[537264]]></sid>
-    <group_name><![CDATA[Group1]]></group_name>
-    <group_order><![CDATA[0]]></group_order>
-    <description/>
-    <language><![CDATA[en]]></language>
-    <randomization_group/>
-    <grelevance/>
-   </row>
-  </rows>
- </groups>
- <questions>
-  <fields>
-   <fieldname>qid</fieldname>
-   <fieldname>parent_qid</fieldname>
-   <fieldname>sid</fieldname>
-   <fieldname>gid</fieldname>
-   <fieldname>type</fieldname>
-   <fieldname>title</fieldname>
-   <fieldname>question</fieldname>
-   <fieldname>preg</fieldname>
-   <fieldname>help</fieldname>
-   <fieldname>other</fieldname>
-   <fieldname>mandatory</fieldname>
-   <fieldname>question_order</fieldname>
-   <fieldname>language</fieldname>
-   <fieldname>scale_id</fieldname>
-   <fieldname>same_default</fieldname>
-   <fieldname>relevance</fieldname>
-   <fieldname>modulename</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <qid><![CDATA[1]]></qid>
-    <parent_qid><![CDATA[0]]></parent_qid>
-    <sid><![CDATA[537264]]></sid>
-    <gid><![CDATA[1]]></gid>
-    <type><![CDATA[T]]></type>
-    <title><![CDATA[question1]]></title>
-    <question><![CDATA[What's your name?]]></question>
-    <preg/>
-    <help/>
-    <other><![CDATA[N]]></other>
-    <mandatory><![CDATA[N]]></mandatory>
-    <question_order><![CDATA[1]]></question_order>
-    <language><![CDATA[en]]></language>
-    <scale_id><![CDATA[0]]></scale_id>
-    <same_default><![CDATA[0]]></same_default>
-    <relevance><![CDATA[1]]></relevance>
-   </row>
-  </rows>
- </questions>
- <surveys>
-  <fields>
-   <fieldname>sid</fieldname>
-   <fieldname>admin</fieldname>
-   <fieldname>expires</fieldname>
-   <fieldname>startdate</fieldname>
-   <fieldname>adminemail</fieldname>
-   <fieldname>anonymized</fieldname>
-   <fieldname>faxto</fieldname>
-   <fieldname>format</fieldname>
-   <fieldname>savetimings</fieldname>
-   <fieldname>template</fieldname>
-   <fieldname>language</fieldname>
-   <fieldname>additional_languages</fieldname>
-   <fieldname>datestamp</fieldname>
-   <fieldname>usecookie</fieldname>
-   <fieldname>allowregister</fieldname>
-   <fieldname>allowsave</fieldname>
-   <fieldname>autonumber_start</fieldname>
-   <fieldname>autoredirect</fieldname>
-   <fieldname>allowprev</fieldname>
-   <fieldname>printanswers</fieldname>
-   <fieldname>ipaddr</fieldname>
-   <fieldname>refurl</fieldname>
-   <fieldname>publicstatistics</fieldname>
-   <fieldname>publicgraphs</fieldname>
-   <fieldname>listpublic</fieldname>
-   <fieldname>htmlemail</fieldname>
-   <fieldname>sendconfirmation</fieldname>
-   <fieldname>tokenanswerspersistence</fieldname>
-   <fieldname>assessments</fieldname>
-   <fieldname>usecaptcha</fieldname>
-   <fieldname>usetokens</fieldname>
-   <fieldname>bounce_email</fieldname>
-   <fieldname>attributedescriptions</fieldname>
-   <fieldname>emailresponseto</fieldname>
-   <fieldname>emailnotificationto</fieldname>
-   <fieldname>tokenlength</fieldname>
-   <fieldname>showxquestions</fieldname>
-   <fieldname>showgroupinfo</fieldname>
-   <fieldname>shownoanswer</fieldname>
-   <fieldname>showqnumcode</fieldname>
-   <fieldname>bouncetime</fieldname>
-   <fieldname>bounceprocessing</fieldname>
-   <fieldname>bounceaccounttype</fieldname>
-   <fieldname>bounceaccounthost</fieldname>
-   <fieldname>bounceaccountpass</fieldname>
-   <fieldname>bounceaccountencryption</fieldname>
-   <fieldname>bounceaccountuser</fieldname>
-   <fieldname>showwelcome</fieldname>
-   <fieldname>showprogress</fieldname>
-   <fieldname>questionindex</fieldname>
-   <fieldname>navigationdelay</fieldname>
-   <fieldname>nokeyboard</fieldname>
-   <fieldname>alloweditaftercompletion</fieldname>
-   <fieldname>googleanalyticsstyle</fieldname>
-   <fieldname>googleanalyticsapikey</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <sid><![CDATA[537264]]></sid>
-    <admin><![CDATA[Administrator]]></admin>
-    <adminemail><![CDATA[your-email@example.net]]></adminemail>
-    <anonymized><![CDATA[N]]></anonymized>
-    <faxto/>
-    <format><![CDATA[G]]></format>
-    <savetimings><![CDATA[N]]></savetimings>
-    <template><![CDATA[default]]></template>
-    <language><![CDATA[en]]></language>
-    <additional_languages/>
-    <datestamp><![CDATA[N]]></datestamp>
-    <usecookie><![CDATA[N]]></usecookie>
-    <allowregister><![CDATA[N]]></allowregister>
-    <allowsave><![CDATA[Y]]></allowsave>
-    <autonumber_start><![CDATA[0]]></autonumber_start>
-    <autoredirect><![CDATA[N]]></autoredirect>
-    <allowprev><![CDATA[N]]></allowprev>
-    <printanswers><![CDATA[N]]></printanswers>
-    <ipaddr><![CDATA[N]]></ipaddr>
-    <refurl><![CDATA[N]]></refurl>
-    <publicstatistics><![CDATA[N]]></publicstatistics>
-    <publicgraphs><![CDATA[N]]></publicgraphs>
-    <listpublic><![CDATA[N]]></listpublic>
-    <htmlemail><![CDATA[Y]]></htmlemail>
-    <sendconfirmation><![CDATA[Y]]></sendconfirmation>
-    <tokenanswerspersistence><![CDATA[N]]></tokenanswerspersistence>
-    <assessments><![CDATA[N]]></assessments>
-    <usecaptcha><![CDATA[N]]></usecaptcha>
-    <usetokens><![CDATA[N]]></usetokens>
-    <bounce_email><![CDATA[your-email@example.net]]></bounce_email>
-    <emailresponseto/>
-    <emailnotificationto/>
-    <tokenlength><![CDATA[15]]></tokenlength>
-    <showxquestions><![CDATA[Y]]></showxquestions>
-    <showgroupinfo><![CDATA[B]]></showgroupinfo>
-    <shownoanswer><![CDATA[N]]></shownoanswer>
-    <showqnumcode><![CDATA[X]]></showqnumcode>
-    <bounceprocessing><![CDATA[N]]></bounceprocessing>
-    <showwelcome><![CDATA[Y]]></showwelcome>
-    <showprogress><![CDATA[Y]]></showprogress>
-    <questionindex><![CDATA[0]]></questionindex>
-    <navigationdelay><![CDATA[0]]></navigationdelay>
-    <nokeyboard><![CDATA[N]]></nokeyboard>
-    <alloweditaftercompletion><![CDATA[N]]></alloweditaftercompletion>
-   </row>
-  </rows>
- </surveys>
- <surveys_languagesettings>
-  <fields>
-   <fieldname>surveyls_survey_id</fieldname>
-   <fieldname>surveyls_language</fieldname>
-   <fieldname>surveyls_title</fieldname>
-   <fieldname>surveyls_description</fieldname>
-   <fieldname>surveyls_welcometext</fieldname>
-   <fieldname>surveyls_endtext</fieldname>
-   <fieldname>surveyls_url</fieldname>
-   <fieldname>surveyls_urldescription</fieldname>
-   <fieldname>surveyls_email_invite_subj</fieldname>
-   <fieldname>surveyls_email_invite</fieldname>
-   <fieldname>surveyls_email_remind_subj</fieldname>
-   <fieldname>surveyls_email_remind</fieldname>
-   <fieldname>surveyls_email_register_subj</fieldname>
-   <fieldname>surveyls_email_register</fieldname>
-   <fieldname>surveyls_email_confirm_subj</fieldname>
-   <fieldname>surveyls_email_confirm</fieldname>
-   <fieldname>surveyls_dateformat</fieldname>
-   <fieldname>surveyls_attributecaptions</fieldname>
-   <fieldname>email_admin_notification_subj</fieldname>
-   <fieldname>email_admin_notification</fieldname>
-   <fieldname>email_admin_responses_subj</fieldname>
-   <fieldname>email_admin_responses</fieldname>
-   <fieldname>surveyls_numberformat</fieldname>
-   <fieldname>attachments</fieldname>
-  </fields>
-  <rows>
-   <row>
-    <surveyls_survey_id><![CDATA[537264]]></surveyls_survey_id>
-    <surveyls_language><![CDATA[en]]></surveyls_language>
-    <surveyls_title><![CDATA[TestSurvey]]></surveyls_title>
-    <surveyls_description/>
-    <surveyls_welcometext/>
-    <surveyls_endtext/>
-    <surveyls_url/>
-    <surveyls_urldescription/>
-    <surveyls_email_invite_subj><![CDATA[Invitation to participate in a survey]]></surveyls_email_invite_subj>
-    <surveyls_email_invite><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-you have been invited to participate in a survey.<br />
-<br />
-The survey is titled:<br />
-"{SURVEYNAME}"<br />
-<br />
-"{SURVEYDESCRIPTION}"<br />
-<br />
-To participate, please click on the link below.<br />
-<br />
-Sincerely,<br />
-<br />
-{ADMINNAME} ({ADMINEMAIL})<br />
-<br />
-----------------------------------------------<br />
-Click here to do the survey:<br />
-{SURVEYURL}<br />
-<br />
-If you do not want to participate in this survey and don't want to receive any more invitations please click the following link:<br />
-{OPTOUTURL}<br />
-<br />
-If you are blacklisted but want to participate in this survey and want to receive invitations please click the following link:<br />
-{OPTINURL}]]></surveyls_email_invite>
-    <surveyls_email_remind_subj><![CDATA[Reminder to participate in a survey]]></surveyls_email_remind_subj>
-    <surveyls_email_remind><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-Recently we invited you to participate in a survey.<br />
-<br />
-We note that you have not yet completed the survey, and wish to remind you that the survey is still available should you wish to take part.<br />
-<br />
-The survey is titled:<br />
-"{SURVEYNAME}"<br />
-<br />
-"{SURVEYDESCRIPTION}"<br />
-<br />
-To participate, please click on the link below.<br />
-<br />
-Sincerely,<br />
-<br />
-{ADMINNAME} ({ADMINEMAIL})<br />
-<br />
-----------------------------------------------<br />
-Click here to do the survey:<br />
-{SURVEYURL}<br />
-<br />
-If you do not want to participate in this survey and don't want to receive any more invitations please click the following link:<br />
-{OPTOUTURL}]]></surveyls_email_remind>
-    <surveyls_email_register_subj><![CDATA[Survey registration confirmation]]></surveyls_email_register_subj>
-    <surveyls_email_register><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-You, or someone using your email address, have registered to participate in an online survey titled {SURVEYNAME}.<br />
-<br />
-To complete this survey, click on the following URL:<br />
-<br />
-{SURVEYURL}<br />
-<br />
-If you have any questions about this survey, or if you did not register to participate and believe this email is in error, please contact {ADMINNAME} at {ADMINEMAIL}.]]></surveyls_email_register>
-    <surveyls_email_confirm_subj><![CDATA[Confirmation of your participation in our survey]]></surveyls_email_confirm_subj>
-    <surveyls_email_confirm><![CDATA[Dear {FIRSTNAME},<br />
-<br />
-this email is to confirm that you have completed the survey titled {SURVEYNAME} and your response has been saved. Thank you for participating.<br />
-<br />
-If you have any further questions about this email, please contact {ADMINNAME} on {ADMINEMAIL}.<br />
-<br />
-Sincerely,<br />
-<br />
-{ADMINNAME}]]></surveyls_email_confirm>
-    <surveyls_dateformat><![CDATA[9]]></surveyls_dateformat>
-    <email_admin_notification_subj><![CDATA[Response submission for survey {SURVEYNAME}]]></email_admin_notification_subj>
-    <email_admin_notification><![CDATA[Hello,<br />
-<br />
-A new response was submitted for your survey '{SURVEYNAME}'.<br />
-<br />
-Click the following link to reload the survey:<br />
-{RELOADURL}<br />
-<br />
-Click the following link to see the individual response:<br />
-{VIEWRESPONSEURL}<br />
-<br />
-Click the following link to edit the individual response:<br />
-{EDITRESPONSEURL}<br />
-<br />
-View statistics by clicking here:<br />
-{STATISTICSURL}]]></email_admin_notification>
-    <email_admin_responses_subj><![CDATA[Response submission for survey {SURVEYNAME} with results]]></email_admin_responses_subj>
-    <email_admin_responses><![CDATA[Hello,<br />
-<br />
-A new response was submitted for your survey '{SURVEYNAME}'.<br />
-<br />
-Click the following link to reload the survey:<br />
-{RELOADURL}<br />
-<br />
-Click the following link to see the individual response:<br />
-{VIEWRESPONSEURL}<br />
-<br />
-Click the following link to edit the individual response:<br />
-{EDITRESPONSEURL}<br />
-<br />
-View statistics by clicking here:<br />
-{STATISTICSURL}<br />
-<br />
-<br />
-The following answers were given by the participant:<br />
-{ANSWERTABLE}]]></email_admin_responses>
-    <surveyls_numberformat><![CDATA[0]]></surveyls_numberformat>
-   </row>
-  </rows>
- </surveys_languagesettings>
-</document>

docker-compose/test/limesurvey_testdata/results-survey537264.csv

@@ -1,3 +0,0 @@
-"Response ID","Date submitted","Last page","Start language","What's your name?"
-"1","1980-01-01 00:00:00","1","en","Andrea"
-

docker-compose/test/limesurvey_testdata/tokens_241646.csv

@@ -1,2 +0,0 @@
-tid,firstname,lastname,email,emailstatus,token,language,validfrom,validuntil,invited,reminded,remindercount,completed,usesleft
-"1","Andrea","Fazzi","andrea.fazzi@foo.org","OK","MCLhkEghQYSDoXq","en","","","N","N","0","N","1"

docker-compose/test/openldap/certs/ca.crt

@@ -1 +0,0 @@
-/container/service/:ssl-tools/assets/default-ca/default-ca.pem

docker-compose/test/openldap/certs/ldap.crt

@@ -1,18 +0,0 @@
------BEGIN CERTIFICATE-----
-MIIC9DCCAnmgAwIBAgIUPIe78u0RfV5AMTmyNmr8mOfFpEYwCgYIKoZIzj0EAwMw
-gZYxCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxBMUEgQ2FyIFdhc2gxJDAiBgNVBAsT
-G0luZm9ybWF0aW9uIFRlY2hub2xvZ3kgRGVwLjEUMBIGA1UEBxMLQWxidXF1ZXJx
-dWUxEzARBgNVBAgTCk5ldyBNZXhpY28xHzAdBgNVBAMTFmRvY2tlci1saWdodC1i
-YXNlaW1hZ2UwHhcNMTcwOTI5MTIyMTAwWhcNMTgwOTI5MTIyMTAwWjCBhzELMAkG
-A1UEBhMCVVMxEzARBgNVBAgTCk5ldyBNZXhpY28xFDASBgNVBAcTC0FsYnVxdWVy
-cXVlMRUwEwYDVQQKEwxBMUEgQ2FyIFdhc2gxJDAiBgNVBAsTG0luZm9ybWF0aW9u
-IFRlY2hub2xvZ3kgRGVwLjEQMA4GA1UEAxMHZm9vLm9yZzB2MBAGByqGSM49AgEG
-BSuBBAAiA2IABETk0P2Rf8mvzOgEnbHhB5TmYuQSjdd3HqqerYEVqHNeTlsCNcXz
-ZRp2+brd6XdYdyNnZS8u/U6nTs2jDBEsVOqrK+UIErqR5CU/RrkRSi0rlaBsHvIM
-6Kw5B72oZtK44qOBlDCBkTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB
-BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEvkfn76qRZg
-uCBQNYG6X+81W2puMB8GA1UdIwQYMBaAFE+l6XolXDAYnGLTl4W6ULKHrm74MBIG
-A1UdEQQLMAmCB2Zvby5vcmcwCgYIKoZIzj0EAwMDaQAwZgIxAPqrQuviRdfHYxaQ
-7D9cW4FB0pFKrGfeKw3kZ9vm8WpyAdHbNkPUsHV+JMQpZpAfDQIxAJba6fvf0LCL
-TqNOT2iDQY+ENL5QZZ4kXhOyzIfZqiEf1lYU4RMzvhE98/uaHEhCiw==
------END CERTIFICATE-----

docker-compose/test/openldap/ldap/DB_CONFIG

@@ -1,4 +0,0 @@
-set_cachesize 0 2097152 0
-set_lk_max_objects 1500
-set_lk_max_locks 1500
-set_lk_max_lockers 1500

docker-compose/test/openldap/slapd.d/docker-openldap-was-started-with-tls

@@ -1,4 +0,0 @@
-export PREVIOUS_LDAP_TLS_CA_CRT_PATH=/container/service/slapd/assets/certs/ca.crt
-export PREVIOUS_LDAP_TLS_CRT_PATH=/container/service/slapd/assets/certs/ldap.crt
-export PREVIOUS_LDAP_TLS_KEY_PATH=/container/service/slapd/assets/certs/ldap.key
-export PREVIOUS_LDAP_TLS_DH_PARAM_PATH=/container/service/slapd/assets/certs/dhparam.pem

test/integration_test/Dockerfile

@@ -1,13 +0,0 @@
-FROM ruby:2.3.1
-RUN apt-get update -qq && apt-get install -y build-essential libpq-dev cmake
-RUN curl -L https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-2.1.1-linux-x86_64.tar.bz2 | tar xjvf -
-ENV PATH=/phantomjs-2.1.1-linux-x86_64/bin:$PATH
-RUN mkdir /test
-RUN mkdir /test/features
-WORKDIR /test
-# ADD features /test/features
-ADD Gemfile /test/Gemfile
-ADD Gemfile.lock /test/Gemfile.lock
-RUN bundle install -j 8
-CMD ["cucumber", "features/login.feature"]
-

test/integration_test/Gemfile

@@ -1,9 +0,0 @@
-source "https://rubygems.org"
-
-gem 'cucumber'
-gem 'capybara'
-gem 'pry'
-gem 'pry-byebug'
-gem 'rspec-expectations'
-gem 'poltergeist'
-gem 'httparty'

test/integration_test/Gemfile.lock

@@ -1,84 +0,0 @@
-GEM
-  remote: https://rubygems.org/
-  specs:
-    addressable (2.4.0)
-    builder (3.2.2)
-    byebug (9.0.5)
-    capybara (2.7.1)
-      addressable
-      mime-types (>= 1.16)
-      nokogiri (>= 1.3.3)
-      rack (>= 1.0.0)
-      rack-test (>= 0.5.4)
-      xpath (~> 2.0)
-    cliver (0.3.2)
-    coderay (1.1.1)
-    cucumber (2.3.3)
-      builder (>= 2.1.2)
-      cucumber-core (~> 1.4.0)
-      cucumber-wire (~> 0.0.1)
-      diff-lcs (>= 1.1.3)
-      gherkin (~> 3.2.0)
-      multi_json (>= 1.7.5, < 2.0)
-      multi_test (>= 0.1.2)
-    cucumber-core (1.4.0)
-      gherkin (~> 3.2.0)
-    cucumber-wire (0.0.1)
-    diff-lcs (1.2.5)
-    gherkin (3.2.0)
-    httparty (0.13.7)
-      json (~> 1.8)
-      multi_xml (>= 0.5.2)
-    json (1.8.3)
-    method_source (0.8.2)
-    mime-types (3.1)
-      mime-types-data (~> 3.2015)
-    mime-types-data (3.2016.0521)
-    mini_portile2 (2.1.0)
-    multi_json (1.12.1)
-    multi_test (0.1.2)
-    multi_xml (0.5.5)
-    nokogiri (1.6.8)
-      mini_portile2 (~> 2.1.0)
-      pkg-config (~> 1.1.7)
-    pkg-config (1.1.7)
-    poltergeist (1.9.0)
-      capybara (~> 2.1)
-      cliver (~> 0.3.1)
-      multi_json (~> 1.0)
-      websocket-driver (>= 0.2.0)
-    pry (0.10.3)
-      coderay (~> 1.1.0)
-      method_source (~> 0.8.1)
-      slop (~> 3.4)
-    pry-byebug (3.4.0)
-      byebug (~> 9.0)
-      pry (~> 0.10)
-    rack (1.6.4)
-    rack-test (0.6.3)
-      rack (>= 1.0)
-    rspec-expectations (3.4.0)
-      diff-lcs (>= 1.2.0, < 2.0)
-      rspec-support (~> 3.4.0)
-    rspec-support (3.4.1)
-    slop (3.6.0)
-    websocket-driver (0.6.4)
-      websocket-extensions (>= 0.1.0)
-    websocket-extensions (0.1.2)
-    xpath (2.0.0)
-      nokogiri (~> 1.3)
-
-PLATFORMS
-  ruby
-
-DEPENDENCIES
-  capybara
-  cucumber
-  httparty
-  poltergeist
-  pry
-  pry-byebug
-  rspec-expectations
-
-BUNDLED WITH
-   1.10.5

test/integration_test/features/login.feature

@@ -1,9 +0,0 @@
-Feature: Login page
-  As a Karmen user
-  I need a way to login into the application
-  So that I can gain access to the service
-
-  Scenario: Login
-    Given I am on Karmen homepage
-    When I fill the form with username and password
-    Then I should gain access to the application

test/integration_test/features/step_definitions/login.rb

@@ -1,13 +0,0 @@
-Given(/^I am on Karmen homepage$/) do
-  visit 'http://karmen:3000/login'
-end
-
-When(/^I fill the form with username and password$/) do
-  fill_in('username', with: 'andrea.fazzi')
-  fill_in('password', with: 'test123')
-  click_button('Login')
-end
-
-Then(/^I should gain access to the application$/) do
-  expect(page).to have_content 'Super-secret'
-end

test/integration_test/features/support/env.rb

@@ -1,15 +0,0 @@
-require "capybara"
-require "capybara/cucumber"
-require 'capybara/poltergeist'
-
-Capybara.default_driver = :poltergeist
-Capybara.register_driver :poltergeist do |app|
-    options = {
-        :js_errors => true,
-        :timeout => 120,
-        :debug => false,
-        :phantomjs_options => ['--load-images=no', '--disk-cache=false'],
-        :inspector => true,
-    }
-    Capybara::Poltergeist::Driver.new(app, options)
-end