Article 11659 at 08/01/05 00:53:52 From: atopian (at mark) gmail.com Subject: [coba-e:11659] Re: Project "Ellis" announcement

Index: [Article Count Order] [Thread]
Date:  Fri, 4 Jan 2008 10:53:50 -0500
From:  Atopian <atopian (at mark) gmail.com>
Subject:  [coba-e:11659] Re: Project "Ellis" announcement
To:  coba-e (at mark) bluequartz.org
Message-Id:  <ff29bff30801040753h5170504o7138b5fd1d784e9f (at mark) mail.gmail.com>
In-Reply-To:  <52167ABA-E502-4BDF-A56B-0CA497FD1761 (at mark) mfc.bakkers.gr.jp>
References:  <F87B3A89-2ED1-4933-B33B-D489B50EB08A (at mark) alpha.or.jp>	 <Pine.LNX.4.63.0712141529270.15992 (at mark) mail.nuonce.net>	 <20080101174459.0a8c5b32 (at mark) patricko> <20080102140932.7bc24437 (at mark) patricko>	 <000e01c84d98$44fe8dc0$1e64a8c0 (at mark) nuonce.net>	 <52167ABA-E502-4BDF-A56B-0CA497FD1761 (at mark) mfc.bakkers.gr.jp>
X-Mail-Count: 11659

One of the biggest drawbacks to openldap is the lack of a proper
dynamic ACI.  FDS is based off of the same code base as NDS/SunOne/JES
Ent LDAP.  In addition to proper ACI support, it should have the
multi-master replication features that openldap lacks (note this data
is ~6-12 months old, feel free to correct me if the landscape has
changed).  Having to restart openldap everytime a permission changes
(site is added, etc) is a very unpleasant idea.

That being said, grats patrick for doing something I have wanted to
see done to the old cobalt backend since I was at cobalt :)


On Jan 3, 2008 4:34 PM, Yasuda Yutaka <yasuda (at mark) mfc.bakkers.gr.jp> wrote:
> Hi Blues,
>
> I am very interesting about Patrick's project (of University?) and I also agree Brian.
>
> First, to replace CODB, the point is how implement the compatible CODB API using LDAP system.
> Of course you may need to modify or add some tricks to enhance the response time or just for tuning to get better effect. But even so, there is no needs of GUI.
> As Brian mentioned already, another path to modify database will make conflict easily.
>
> And the second, I prefer to chose OpenLDAP because it will be maintained continuously in long term, without too much aggressive change, I guess. It is important for BlueQuartz that independence and continuation.
>
> Thanks, and I wish you to have great new year.
> Yasu.
>
>
>
>
>
> On 2008/01/03, at 8:36, Brian N. Smith wrote:
>
> >> please help out by telling me which is better
> >> and included your own opinion.
> >
> >>> Openldap vs. Fedora Directory Service (FDS).
> >
> > My two cents.
> >
> > It looks like Fedora Directory Service is a whole management platform. BQ does not need a whole management platform, as it already is one. To try to integrate the two of them would kind of seem pointless since BQ uses it's own UI API.  You would either have to recode all of BQ UI or recode all of FDS UI.  The second thing would be to make a handler service.  Remember CCE calls the Perl handlers to do all of the magical backend.  If you plan on using FDS, you will have to redo all of the handler stuff to make sure that everything gets built/modified/deleted, etc.
> >
> > I would think using Openldap as the basis to remove CODB would definitely be the way to go.  I have never jumped into the way that CCE works with writing to the CODB stuff, so I have no idea how hard it would be to integrate the two.   I think though by adding on the complexity of FDS would ultimately be pointless, as your just reinventing the wheel.
> >
> > Now, on a side note.  To have it to just CHECK, that may be something, but any LDAP query browser will work just fine as well.
> >
> > Good luck though!
> >
> > Brian
> >
> >
>
>
>