I have just configured sudo to use ldap for the sudoers. I found that there is already a ldap USE which provides the /etc/ldap.conf.sudo for configuration. But I really missed the sudo.schema for creating objects in my ldap server. Reproducible: Always Steps to Reproduce: 1. Just emerge sudo and try to create objectClass sudoRole. You will need a sudo.schema for the ldap server which is not provided by either net-nds/openldap nor app-admin/sudo Expected Results: I would like to see sudo openldap schema file. Perhaps it's a better way to provide it with the openldap ebuild?
Created attachment 143010 [details] My sudo schema file It would be nice if you could provide this file by either sudo of openldap ebuild
Hmmm I think this is either space for an upstream bug (if they provide the schema as documentation we can just install it as documentation), or for a documentation bug. I'll ponder a bit on it.
There is a readme file on the sudo homepage relating to ldap: http://www.sudo.ws/sudo/readme_ldap.html There they are talking about a schema.OpenLDAP file which does not exist in their provided tgz. Perhaps it's really an upstream issue. g, mueli
Ok just found that the schema file is part of sudo-1.6.9p12. I would say the bug is fixed!
One more comment for the dev: Perhaps it would be nice to copy the schema files (schema.iPlanet & schema.OpenLDAP) into /usr/share/doc/ ?
Will install it as doc later then.
Fixed, now schema.OpenLDAP is installed when USE=ldap is enabled.
