AW: Authorization through LDAP

[Unger Richard <ru...@camino.at>]

Hi There!

While I do not know enough about slide yet to say for sure, I think that
what you propose is definately possible. The design of slide seems to
support the idea of using different stores for different parts of the
domain.

Another comment I have on this is that tomcat supports LDAP based
authentication using JNDI, which in turn has an LDAP module. It would seem
efficient to me (in terms of amount of work required) to use this tomcat
solution. Thus the slide-store would be a connector between slide and the
tomcat user database, or perhaps JNDI directly. See Tomcat 4.1.x ...

Richie

-----Ursprüngliche Nachricht-----
Von: Jim Alateras [mailto:jima@intalio.com]
Gesendet: Samstag, 17. August 2002 04:31
An: Slide Users Mailing List
Betreff: Authorization through LDAP


We are trying to integrate Slide with LDAP and have so far managed to get
the authentication working through LDAP but we still need to work on
authorization. I have the following questions

1. The documentation indicates that we can federate our repository across a
number of different stores. Has anyone tried this?

2. If 1 works is it possible to split the /users section in to an LDAP store
and keep the rest in a JDBC store? I am assuming that an LDAP store does not
currently exist and I would have to create one? I am also assuming that I
would need to store serialized Java objects (SubjectNodes) in LDAP, is this
correct?

3. If the /users are stored in LDAP could I have actions and permissions
still stored in the JDBC store.

4. If I develop an LDAPStore do I need to modify anything else to get LDAP
authorization going?


cheers
</jima>


--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>

--
To unsubscribe, e-mail:   <ma...@jakarta.apache.org>
For additional commands, e-mail: <ma...@jakarta.apache.org>