ldap-docker/schema/custom.schema

##
## Schema for account management extra attributes in LDAP
## by Wproject 2022
## OIDs are owned by Cogent Innovators, LLC
##
## 1.3.6.1.4.1.19937.1.1.x - attributetypes
## 1.3.6.1.4.1.19937.1.2.x - objectclasses
##
attributetype     ( 2.25.330098197460787237907941808102951680393.1.0 NAME 'active'
		DESC 'True if account is active'
        EQUALITY booleanMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
		SINGLE-VALUE )

attributetype     ( 2.25.330098197460787237907941808102951680393.1.1 NAME 'fakeCn'
		DESC 'True if the CN or fullname was created ramdomly and is still ficticious'
        EQUALITY booleanMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
		SINGLE-VALUE )

attributetype     ( 2.25.330098197460787237907941808102951680393.1.2 NAME 'devices'
		DESC 'Trusted devices info from user-agent'
        EQUALITY caseIgnoreMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )

attributetype     ( 2.25.330098197460787237907941808102951680393.1.3 NAME 'lastLogin'
	 	DESC 'Last login timestamp'
        EQUALITY generalizedTimeMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
 		SINGLE-VALUE )

attributetype     ( 2.25.330098197460787237907941808102951680393.1.4 NAME 'ip'
	 	DESC 'ip address'
        EQUALITY caseIgnoreIA5Match
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
 		SINGLE-VALUE )

attributetype     ( 2.25.330098197460787237907941808102951680393.1.5 NAME 'secureAuth'
		DESC 'True if 2FA active'
        EQUALITY booleanMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
		SINGLE-VALUE )

attributetype     ( 2.25.330098197460787237907941808102951680393.1.6 NAME 'authCode'
	 	DESC 'Two factor authentication code'
        EQUALITY caseIgnoreIA5Match
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
 		SINGLE-VALUE )

objectclass 	( 2.25.330098197460787237907941808102951680393.1.2.0 NAME 'accountsManagement' SUP top AUXILIARY
		DESC 'Accounts management'
		MUST ( cn $ uid $ active $ fakeCn $ devices )
		MAY ( userPassword $ description $ lastLogin $ ip $ secureAuth $ authCode) )
first commit 2022-04-22 22:31:55 +02:00			`##`
eguneraketa 2022-04-23 16:59:38 +02:00			`## Schema for account management extra attributes in LDAP`
			`## by Wproject 2022`
first commit 2022-04-22 22:31:55 +02:00			`## OIDs are owned by Cogent Innovators, LLC`
			`##`
			`## 1.3.6.1.4.1.19937.1.1.x - attributetypes`
			`## 1.3.6.1.4.1.19937.1.2.x - objectclasses`
			`##`
			`attributetype ( 2.25.330098197460787237907941808102951680393.1.0 NAME 'active'`
			`DESC 'True if account is active'`
			`EQUALITY booleanMatch`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.7`
			`SINGLE-VALUE )`

			`attributetype ( 2.25.330098197460787237907941808102951680393.1.1 NAME 'fakeCn'`
			`DESC 'True if the CN or fullname was created ramdomly and is still ficticious'`
			`EQUALITY booleanMatch`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.7`
			`SINGLE-VALUE )`

testing ip address field 2023-04-05 13:10:24 +02:00			`attributetype ( 2.25.330098197460787237907941808102951680393.1.2 NAME 'devices'`
testing device field 2023-04-04 20:27:49 +02:00			`DESC 'Trusted devices info from user-agent'`
			`EQUALITY caseIgnoreMatch`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 )`

testing ip address field 2023-04-05 13:10:24 +02:00			`attributetype ( 2.25.330098197460787237907941808102951680393.1.3 NAME 'lastLogin'`
			`DESC 'Last login timestamp'`
			`EQUALITY generalizedTimeMatch`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.24`
			`SINGLE-VALUE )`

			`attributetype ( 2.25.330098197460787237907941808102951680393.1.4 NAME 'ip'`
			`DESC 'ip address'`
			`EQUALITY caseIgnoreIA5Match`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.26`
			`SINGLE-VALUE )`
first commit 2022-04-22 22:31:55 +02:00
2FA 2023-11-08 08:40:04 +01:00			`attributetype ( 2.25.330098197460787237907941808102951680393.1.5 NAME 'secureAuth'`
			`DESC 'True if 2FA active'`
			`EQUALITY booleanMatch`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.7`
			`SINGLE-VALUE )`

2fa 2023-11-16 12:11:24 +01:00			`attributetype ( 2.25.330098197460787237907941808102951680393.1.6 NAME 'authCode'`
			`DESC 'Two factor authentication code'`
			`EQUALITY caseIgnoreIA5Match`
			`SYNTAX 1.3.6.1.4.1.1466.115.121.1.26`
			`SINGLE-VALUE )`

first commit 2022-04-22 22:31:55 +02:00			`objectclass ( 2.25.330098197460787237907941808102951680393.1.2.0 NAME 'accountsManagement' SUP top AUXILIARY`
			`DESC 'Accounts management'`
testing ip address field 2023-04-05 13:10:24 +02:00			`MUST ( cn $ uid $ active $ fakeCn $ devices )`
2fa 2023-11-16 12:11:24 +01:00			`MAY ( userPassword $ description $ lastLogin $ ip $ secureAuth $ authCode) )`