Server Side Modification plugin
The plugin provides facilities for server-side updating entry based on it's attribute values, modifiers DN, and time.
$ apt-get install 389-ds-base-dev libnspr4-dev $ make clean $ make ssm
$ cp ssm.so /usr/lib/x86_64-linux-gnu/dirsrv/plugins $ cat SSM.ldif | ldapmodify -H ldap://localhost -D "cn=Directory Manager" -W $ cp udb.conf /etc/dirsrv/slapd-ldap/ $ systemctl restart dirsrv@ldap
MODIFIED-ATTRIBUTE[,MODIFIED-ATTRIBUTE] FILTER↹OPERATION=TARGET-ATTRIBUTE=ACTION↹[OPERATION=TARGET-ATTRIBUTE=ACTION] FILTER↹OPERATION=TARGET-ATTRIBUTE=ACTION↹[OPERATION=TARGET-ATTRIBUTE=ACTION]
A comma-separated list of attributes which modification causes ACTION. Any attribute can be addressed as '*'.
LDAP filter for limiting entries which should be subject of an ACTION.
The TAB character serves as FILTER and OPERATION separator. Space is not permitted.
One of possible LDAP operations:
= serves for REPLACE,
+ for ADD, and
- for DELETE.
An attribute that should be modified by an ACTION.
Possible actions are:
||Place timestamp of entry modification into TARGET-ATTRIBUTE|
||Place modifiers DN into TARGET-ATTRIBUTE|
||Serialize strings a, b, ... and separate them by
||Multiple strings are interpreted as multiple values assigned into TARGET-ATTRIBUTE|
entryStatus is modified update
with modification timestamp and
entryStatusModifier with modifiers DN:
entrystatus (objectclass=*) =entrystatustimestamp=!opinit_time() =entrystatusmodifier=!conn_dn()
Every time anything is changed on entry construct
uid ttribute and string
* (uid=*) mail=!concat($uid,@example.com)
userPassword is updated record change timestamp in
userpassword (objectclass=*) =passwordtimestamp=!opinit_time()
This plugin was written by Milan Sova for Sun ONE Directory Server 4 around the year 1999. At the time he was working for the Faculty of Electrical Engineering of the Czech Technical University in Prague (FEL CTU). Later he moved to CESNET.
The plugin was ported for 389 Directory Server 1.4 by Jiří Cejp from FEL CTU.
It was documented and published by Jan Tomášek from CESNET.