OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

provision-comment message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: RE: [provision-comment] Public Comment

Rudi,

1) The intention of the identifier element is to abstract the underlying storage mechanism. If one of the columns in your table holds the unique identifier for the user, then you could use a generic guid identifier and have the SML web service in front of the table know how to query the table using the guid. If you want to have an id tat specifies identity as an attribute that is only unique across a specific table, then you might consider a DN type id:

       <spml:identifier type="urn:oasis:names:tc:SPML:1:0#DN">

          <spml:id>sn=smith,table=myTable</spml:id>

       </spml:identifier>


2) The SPML 1.0 spec defines a mechanism for scoped searches, just like in DSML or LDAP. Because the intent is to abstract the underlying storage structure, the scope is specified as an identifier. For instance to search for all entries in a specified table:

	<spml:searchRequest>
      	<spml:identifier type="urn:oasis:names:tc:SPML:1:0#DN">
          		<spml:id>table=myTable</spml:id>
       	</spml:identifier>
		<dsml:filter>
			...
		</dsml:filter>
	</spml:searchRequest>


I hope that helps.

Jeff Bohren
Product Architect
OpenNetwork Technologies, Inc
 
Try the industry's only 100% .NET-enabled identity management software. Download your free copy of Universal IdP Standard Edition today. Go to www.opennetwork.com/eval.
 


-----Original Message-----
From: comment-form@oasis-open.org [mailto:comment-form@oasis-open.org] 
Sent: Monday, November 24, 2003 10:37 AM
To: provision-comment@lists.oasis-open.org
Subject: [provision-comment] Public Comment


Comment from: rudolf.woehrl@siemens.com

We want to implement a database and an LDAP agent. 2 questions:


1. identification for database record: where did you intend to specify the table name for an addRequest? Does the following excerpt comply?


       <spml:identifier type="urn:oasis:names:tc:SPML:1:0#UserIDAndOrDomainName">

          <spml:id>myTable</spml:id>

         <dsml:attr name="sn"> <value>smith</value></dsml:attr>

       </spml:identifier>



2. scope in LDAP search: LDAP and DSML request a scope attribute for the search. SPML does not offer an according element / attribute. Did you intend to specify it as an operational attribute?


Thanks

Rudi Wöhrl

To unsubscribe from this list, send a post to provision-comment-unsubscribe@lists.oasis-open.org, or visit http://www.oasis-open.org/mlmanage/.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]