📄 rfc2849.txt
字号:
RFC 2849 LDAP Data Interchange Format June 2000Example 2: A file containing an entry with a folded attribute valueversion: 1dn:cn=Barbara Jensen, ou=Product Development, dc=airius, dc=comobjectclass:topobjectclass:personobjectclass:organizationalPersoncn:Barbara Jensencn:Barbara J Jensencn:Babs Jensensn:Jensenuid:bjensentelephonenumber:+1 408 555 1212description:Babs is a big sailing fan, and travels extensively in sea rch of perfect sailing conditions.title:Product Manager, Rod and Reel DivisionExample 3: A file containing a base-64-encoded valueversion: 1dn: cn=Gern Jensen, ou=Product Testing, dc=airius, dc=comobjectclass: topobjectclass: personobjectclass: organizationalPersoncn: Gern Jensencn: Gern O Jensensn: Jensenuid: gernjtelephonenumber: +1 408 555 1212description:: V2hhdCBhIGNhcmVmdWwgcmVhZGVyIHlvdSBhcmUhICBUaGlzIHZhbHVlIGlzIGJhc2UtNjQtZW5jb2RlZCBiZWNhdXNlIGl0IGhhcyBhIGNvbnRyb2wgY2hhcmFjdGVyIGluIGl0IChhIENSKS4NICBCeSB0aGUgd2F5LCB5b3Ugc2hvdWxkIHJlYWxseSBnZXQgb3V0IG1vcmUuExample 4: A file containing an entries with UTF-8-encoded attributevalues, including language tags. Comments indicate the contentsof UTF-8-encoded attributes and distinguished names.version: 1dn:: b3U95Za25qWt6YOoLG89QWlyaXVz# dn:: ou=<JapaneseOU>,o=Airiusobjectclass: topobjectclass: organizationalUnitou:: 5Za25qWt6YOo# ou:: <JapaneseOU>ou;lang-ja:: 5Za25qWt6YOo# ou;lang-ja:: <JapaneseOU>ou;lang-ja;phonetic:: 44GI44GE44GO44KH44GG44G2Good Standards Track [Page 8]
RFC 2849 LDAP Data Interchange Format June 2000# ou;lang-ja:: <JapaneseOU_in_phonetic_representation>ou;lang-en: Salesdescription: Japanese officedn:: dWlkPXJvZ2FzYXdhcmEsb3U95Za25qWt6YOoLG89QWlyaXVz# dn:: uid=<uid>,ou=<JapaneseOU>,o=Airiususerpassword: {SHA}O3HSv1MusyL4kTjP+HKI5uxuNoM=objectclass: topobjectclass: personobjectclass: organizationalPersonobjectclass: inetOrgPersonuid: rogasawaramail: rogasawara@airius.co.jpgivenname;lang-ja:: 44Ot44OJ44OL44O8# givenname;lang-ja:: <JapaneseGivenname>sn;lang-ja:: 5bCP56yg5Y6f# sn;lang-ja:: <JapaneseSn>cn;lang-ja:: 5bCP56yg5Y6fIOODreODieODi+ODvA==# cn;lang-ja:: <JapaneseCn>title;lang-ja:: 5Za25qWt6YOoIOmDqOmVtw==# title;lang-ja:: <JapaneseTitle>preferredlanguage: jagivenname:: 44Ot44OJ44OL44O8# givenname:: <JapaneseGivenname>sn:: 5bCP56yg5Y6f# sn:: <JapaneseSn>cn:: 5bCP56yg5Y6fIOODreODieODi+ODvA==# cn:: <JapaneseCn>title:: 5Za25qWt6YOoIOmDqOmVtw==# title:: <JapaneseTitle>givenname;lang-ja;phonetic:: 44KN44Gp44Gr44O8# givenname;lang-ja;phonetic::<JapaneseGivenname_in_phonetic_representation_kana>sn;lang-ja;phonetic:: 44GK44GM44GV44KP44KJ# sn;lang-ja;phonetic:: <JapaneseSn_in_phonetic_representation_kana>cn;lang-ja;phonetic:: 44GK44GM44GV44KP44KJIOOCjeOBqeOBq+ODvA==# cn;lang-ja;phonetic:: <JapaneseCn_in_phonetic_representation_kana>title;lang-ja;phonetic:: 44GI44GE44GO44KH44GG44G2IOOBtuOBoeOCh+OBhg==# title;lang-ja;phonetic::# <JapaneseTitle_in_phonetic_representation_kana>givenname;lang-en: Rodneysn;lang-en: Ogasawaracn;lang-en: Rodney Ogasawaratitle;lang-en: Sales, DirectorGood Standards Track [Page 9]
RFC 2849 LDAP Data Interchange Format June 2000Example 5: A file containing a reference to an external fileversion: 1dn: cn=Horatio Jensen, ou=Product Testing, dc=airius, dc=comobjectclass: topobjectclass: personobjectclass: organizationalPersoncn: Horatio Jensencn: Horatio N Jensensn: Jensenuid: hjensentelephonenumber: +1 408 555 1212jpegphoto:< file:///usr/local/directory/photos/hjensen.jpgExample 6: A file containing a series of change records and commentsversion: 1# Add a new entrydn: cn=Fiona Jensen, ou=Marketing, dc=airius, dc=comchangetype: addobjectclass: topobjectclass: personobjectclass: organizationalPersoncn: Fiona Jensensn: Jensenuid: fionatelephonenumber: +1 408 555 1212jpegphoto:< file:///usr/local/directory/photos/fiona.jpg# Delete an existing entrydn: cn=Robert Jensen, ou=Marketing, dc=airius, dc=comchangetype: delete# Modify an entry's relative distinguished namedn: cn=Paul Jensen, ou=Product Development, dc=airius, dc=comchangetype: modrdnnewrdn: cn=Paula Jensendeleteoldrdn: 1# Rename an entry and move all of its children to a new location in# the directory tree (only implemented by LDAPv3 servers).dn: ou=PD Accountants, ou=Product Development, dc=airius, dc=comchangetype: modrdnnewrdn: ou=Product Development Accountantsdeleteoldrdn: 0newsuperior: ou=Accounting, dc=airius, dc=comGood Standards Track [Page 10]
RFC 2849 LDAP Data Interchange Format June 2000# Modify an entry: add an additional value to the postaladdress# attribute, completely delete the description attribute, replace# the telephonenumber attribute with two values, and delete a specific# value from the facsimiletelephonenumber attributedn: cn=Paula Jensen, ou=Product Development, dc=airius, dc=comchangetype: modifyadd: postaladdresspostaladdress: 123 Anystreet $ Sunnyvale, CA $ 94086-delete: description-replace: telephonenumbertelephonenumber: +1 408 555 1234telephonenumber: +1 408 555 5678-delete: facsimiletelephonenumberfacsimiletelephonenumber: +1 408 555 9876-# Modify an entry: replace the postaladdress attribute with an empty# set of values (which will cause the attribute to be removed), and# delete the entire description attribute. Note that the first will# always succeed, while the second will only succeed if at least# one value for the description attribute is present.dn: cn=Ingrid Jensen, ou=Product Support, dc=airius, dc=comchangetype: modifyreplace: postaladdress-delete: description-Example 7: An LDIF file containing a change record with a controlversion: 1# Delete an entry. The operation will attach the LDAPv3# Tree Delete Control defined in [9]. The criticality# field is "true" and the controlValue field is# absent, as required by [9].dn: ou=Product Development, dc=airius, dc=comcontrol: 1.2.840.113556.1.4.805 truechangetype: deleteGood Standards Track [Page 11]
RFC 2849 LDAP Data Interchange Format June 2000Security Considerations Given typical directory applications, an LDIF file is likely to contain sensitive personal data. Appropriate measures should be taken to protect the privacy of those persons whose data is contained in an LDIF file. Since ":<" directives can cause external content to be included when processing an LDIF file, one should be cautious of accepting LDIF files from external sources. A "trojan" LDIF file could name a file with sensitive contents and cause it to be included in a directory entry, which a hostile entity could read via LDAP. LDIF does not provide any method for carrying authentication information with an LDIF file. Users of LDIF files must take care to verify the integrity of an LDIF file received from an external source.Acknowledgments The LDAP Interchange Format was developed as part of the University of Michigan LDAP reference implementation, and was developed by Tim Howes, Mark Smith, and Gordon Good. It is based in part upon work supported by the National Science Foundation under Grant No. NCR- 9416667. Members of the IETF LDAP Extensions Working group provided many helpful suggestions. In particular, Hallvard B. Furuseth of the University of Oslo made many significant contributions to this document, including a thorough review and rewrite of the BNF.References [1] Howes, T. and M. Smith, "A MIME Content-Type for Directory Information", RFC 2425, September 1998. [2] Crocker, D., and P. Overell, "Augmented BNF for Syntax Specifications: ABNF", RFC 2234, November 1997. [3] Wahl, M., Kille, S. and T. Howes, "A String Representation of Distinguished Names", RFC 2253, December 1997. [4] Wahl, M., Howes, T. and S. Kille, "Lightweight Directory Access Protocol (v3)", RFC 2251, July 1997. [5] Freed, N. and N. Borenstein, "Multipurpose Internet Mail Extensions (MIME) Part One: Format of Internet Message Bodies", RFC 2045, November 1996.Good Standards Track [Page 12]
RFC 2849 LDAP Data Interchange Format June 2000 [6] Berners-Lee, T., Masinter, L. and M. McCahill, "Uniform Resource Locators (URL)", RFC 1738, December 1994. [7] Bradner, S., "Key Words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, March 1997. [8] The SLAPD and SLURPD Administrators Guide. University of Michigan, April 1996. <URL: http://www.umich.edu/~dirsvcs/ldap/doc/guides/slapd/toc.html> [9] M. P. Armijo, "Tree Delete Control", Work in Progress.Author's Address Gordon Good iPlanet e-commerce Solutions 150 Network Circle Mailstop USCA17-201 Santa Clara, CA 95054, USA Phone: +1 408 276 4351 EMail: ggood@netscape.comGood Standards Track [Page 13]
RFC 2849 LDAP Data Interchange Format June 2000Full Copyright Statement Copyright (C) The Internet Society (2000). All Rights Reserved. This document and translations of it may be copied and furnished to others, and derivative works that comment on or otherwise explain it or assist in its implementation may be prepared, copied, published and distributed, in whole or in part, without restriction of any kind, provided that the above copyright notice and this paragraph are included on all such copies and derivative works. However, this document itself may not be modified in any way, such as by removing the copyright notice or references to the Internet Society or other Internet organizations, except as needed for the purpose of developing Internet standards in which case the procedures for copyrights defined in the Internet Standards process must be followed, or as required to translate it into languages other than English. The limited permissions granted above are perpetual and will not be revoked by the Internet Society or its successors or assigns. This document and the information contained herein is provided on an "AS IS" basis and THE INTERNET SOCIETY AND THE INTERNET ENGINEERING TASK FORCE DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE.Acknowledgement Funding for the RFC Editor function is currently provided by the Internet Society.Good Standards Track [Page 14]
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -