On Wed, Nov 19, 2014 at 03:06:07PM -0800, Quanah Gibson-Mount wrote:
> >in case of such sites you have *databases* used directly for MTA queries
> >or generate config files from databases
>
> LDAP is a database. It already contains all of the necessary data to get
> the work done. What's missing is the postfix piece to utilize LDAP.
LDAP is a denormalized star schema. It does not support fancy
multi table queries, and clients should not need to compensate for
this. To handle objects with multiple lookup keys in LDAP you
either embed all these in a single multi-valued attribute in the
target entry, or use LDAP member DNs to link an LDAP alias entry
to the target entry.
Postfix has no LDAP-specific schemas for implementing lookup features
tables in an LDAP-specific way. LDAP is used as a key-value store.
The key is the envelope sender address, the result is a list of
SASL logins. You need to implement the appropriate key-value
mapping by some suitable means. This lookup is not recursive.
--
Viktor.
