You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@continuum.apache.org by "Henry, Julien" <ju...@capgemini.com> on 2009/03/04 15:18:43 UTC
RE: LDAP integration feedback
Hi Emmanuel,
I've fixed the memory issue with big LDAP. Please review my patch and give me feedback.
I've opened an issue: http://jira.codehaus.org/browse/REDBACK-197
And the patch is: redback-ldap-limit-attributes.patch
The second patch was a try to implement UserQuery in order to filter using LDAP query.
The first patch is very small and I hope it will be included in next Continuum/Archiva release. The second one is a bigger change and may need additional work so I don't expect it to be included, but it may be used as a basis for additional work.
Best regards,
_________________________________________________________
Julien HENRY / Capgemini SUD / Nice
Consultant Technologie & Architecture
Tel : + 33 4 93 72 41 56 / Fax : + 33 4 93 21 02 95 / www.capgemini.com
Porte de l'Arénas - Entrée B | 455 Promenade des Anglais | 06200 Nice
Together. Free your energies
_________________________________________________________
-----Message d'origine-----
De : Emmanuel Venisse [mailto:emmanuel.venisse@gmail.com]
Envoyé : mercredi 25 février 2009 07:04
À : users@continuum.apache.org
Cc : Deneux, Christophe
Objet : Re: LDAP integration feedback
Your help is welcome (documentation improvement and/or patches)
About pagination, it isn't possible with LDAP, but we can limit the result
to 100 and allow users to change the limit.
Yes, Archiva works in a similar way because it use th same framework
(Redback).
Emmanuel
On Tue, Feb 24, 2009 at 5:41 PM, Henry, Julien
<ju...@capgemini.com>wrote:
> Hi Continuum users and devs,
>
>
>
> I would like to share my experimentations regarding Continuum (and I
> suppose Archiva works the same) integration with a corporate LDAP (Active
> Directory in my case).
>
>
>
> After following [1], authentication seemed to work fine.
> redback.default.admin was able to administrate Continuum, and any other user
> from the AD was able to login and was considered as guest. There is no more
> "register" link, only "authenticate".
>
>
>
> My next test was to try adding some roles to users. After logging in with
> my admin account, I tried to click on "Users" menu. But after a very long
> time (timeout?) the page appears without any user. Even trying to filter on
> a specific user name returned no result.
>
>
>
> The reason seemed to be that my company LDAP was too big. After changing
> configuration to a small subdirectory of the LDAP (with less than 100
> users), it worked as expected.
>
>
>
> I'm currently testing with Continuum 1.3.1 and I would like to know if any
> progress was done concerning LDAP integration? If not I would like to know
> what I can do to help. The possible improvements I can see are:
>
> - improve the filter functionality to construct a dynamic LDAP
> query instead of (I guess) retrieving the whole LDAP then filtering in
> memory
>
> - improve the user screen by limiting the number of results from
> LDAP query (I don't know if pagination is possible with LDAP)
>
>
>
> Best regards,
>
>
>
>
>
> [1] http://redback.codehaus.org/integration/ldap.html
>
>
>
> _________________________________________________________
>
> Julien HENRY / *Capgemini SUD **/* Nice
> Consultant Technologie & Architecture
> Tel : + 33 4 93 72 41 56 / Fax : + 33 4 93 21 02 95 / www.capgemini.com
> Porte de l'Arénas - Entrée B | 455 Promenade des Anglais | 06200 Nice
> *Together. Free your energies*
> _________________________________________________________
>
>
>
> This message contains information that may be privileged or confidential
> and is the property of the Capgemini Group. It is intended only for the
> person to whom it is addressed. If you are not the intended recipient, you
> are not authorized to read, print, retain, copy, disseminate, distribute, or
> use this message or any part thereof. If you receive this message in error,
> please notify the sender immediately and delete all copies of this message.
>
>
This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is
intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to
read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message
in error, please notify the sender immediately and delete all copies of this message.
Re: LDAP integration feedback
Posted by Emmanuel Venisse <em...@gmail.com>.
I applied it, thanks. We'll need to update redback version used by
Continuum.
Emmanuel
On Wed, Mar 4, 2009 at 4:21 PM, Emmanuel Venisse <emmanuel.venisse@gmail.com
> wrote:
> Thanks Julien,
> I rapidly look at it and it seems to be good. I'll try to find few minutes
> in next days to test it with my ldap.
>
> Emmanuel
>
>
> On Wed, Mar 4, 2009 at 3:18 PM, Henry, Julien <ju...@capgemini.com>wrote:
>
>> Hi Emmanuel,
>>
>> I've fixed the memory issue with big LDAP. Please review my patch and give
>> me feedback.
>>
>> I've opened an issue: http://jira.codehaus.org/browse/REDBACK-197
>> And the patch is: redback-ldap-limit-attributes.patch
>>
>> The second patch was a try to implement UserQuery in order to filter using
>> LDAP query.
>>
>> The first patch is very small and I hope it will be included in next
>> Continuum/Archiva release. The second one is a bigger change and may need
>> additional work so I don't expect it to be included, but it may be used as a
>> basis for additional work.
>>
>> Best regards,
>>
>> _________________________________________________________
>>
>> Julien HENRY / Capgemini SUD / Nice
>> Consultant Technologie & Architecture
>> Tel : + 33 4 93 72 41 56 / Fax : + 33 4 93 21 02 95 / www.capgemini.com
>> Porte de l'Arénas - Entrée B | 455 Promenade des Anglais | 06200 Nice
>> Together. Free your energies
>> _________________________________________________________
>>
>>
>>
>>
>> -----Message d'origine-----
>> De : Emmanuel Venisse [mailto:emmanuel.venisse@gmail.com]
>> Envoyé : mercredi 25 février 2009 07:04
>> À : users@continuum.apache.org
>> Cc : Deneux, Christophe
>> Objet : Re: LDAP integration feedback
>>
>> Your help is welcome (documentation improvement and/or patches)
>>
>> About pagination, it isn't possible with LDAP, but we can limit the result
>> to 100 and allow users to change the limit.
>>
>> Yes, Archiva works in a similar way because it use th same framework
>> (Redback).
>>
>> Emmanuel
>>
>> On Tue, Feb 24, 2009 at 5:41 PM, Henry, Julien
>> <ju...@capgemini.com>wrote:
>>
>> > Hi Continuum users and devs,
>> >
>> >
>> >
>> > I would like to share my experimentations regarding Continuum (and I
>> > suppose Archiva works the same) integration with a corporate LDAP
>> (Active
>> > Directory in my case).
>> >
>> >
>> >
>> > After following [1], authentication seemed to work fine.
>> > redback.default.admin was able to administrate Continuum, and any other
>> user
>> > from the AD was able to login and was considered as guest. There is no
>> more
>> > "register" link, only "authenticate".
>> >
>> >
>> >
>> > My next test was to try adding some roles to users. After logging in
>> with
>> > my admin account, I tried to click on "Users" menu. But after a very
>> long
>> > time (timeout?) the page appears without any user. Even trying to filter
>> on
>> > a specific user name returned no result.
>> >
>> >
>> >
>> > The reason seemed to be that my company LDAP was too big. After changing
>> > configuration to a small subdirectory of the LDAP (with less than 100
>> > users), it worked as expected.
>> >
>> >
>> >
>> > I'm currently testing with Continuum 1.3.1 and I would like to know if
>> any
>> > progress was done concerning LDAP integration? If not I would like to
>> know
>> > what I can do to help. The possible improvements I can see are:
>> >
>> > - improve the filter functionality to construct a dynamic LDAP
>> > query instead of (I guess) retrieving the whole LDAP then filtering in
>> > memory
>> >
>> > - improve the user screen by limiting the number of results
>> from
>> > LDAP query (I don't know if pagination is possible with LDAP)
>> >
>> >
>> >
>> > Best regards,
>> >
>> >
>> >
>> >
>> >
>> > [1] http://redback.codehaus.org/integration/ldap.html
>> >
>> >
>> >
>> > _________________________________________________________
>> >
>> > Julien HENRY / *Capgemini SUD **/* Nice
>> > Consultant Technologie & Architecture
>> > Tel : + 33 4 93 72 41 56 / Fax : + 33 4 93 21 02 95 / www.capgemini.com
>> > Porte de l'Arénas - Entrée B | 455 Promenade des Anglais | 06200 Nice
>> > *Together. Free your energies*
>> > _________________________________________________________
>> >
>> >
>> >
>> > This message contains information that may be privileged or confidential
>> > and is the property of the Capgemini Group. It is intended only for the
>> > person to whom it is addressed. If you are not the intended recipient,
>> you
>> > are not authorized to read, print, retain, copy, disseminate,
>> distribute, or
>> > use this message or any part thereof. If you receive this message in
>> error,
>> > please notify the sender immediately and delete all copies of this
>> message.
>> >
>> >
>>
>>
>>
>>
>>
>>
>> This message contains information that may be privileged or confidential
>> and is the property of the Capgemini Group. It is
>> intended only for the person to whom it is addressed. If you are not the
>> intended recipient, you are not authorized to
>> read, print, retain, copy, disseminate, distribute, or use this message or
>> any part thereof. If you receive this message
>> in error, please notify the sender immediately and delete all copies of
>> this message.
>>
>>
>
Re: LDAP integration feedback
Posted by Emmanuel Venisse <em...@gmail.com>.
Thanks Julien,
I rapidly look at it and it seems to be good. I'll try to find few minutes
in next days to test it with my ldap.
Emmanuel
On Wed, Mar 4, 2009 at 3:18 PM, Henry, Julien <ju...@capgemini.com>wrote:
> Hi Emmanuel,
>
> I've fixed the memory issue with big LDAP. Please review my patch and give
> me feedback.
>
> I've opened an issue: http://jira.codehaus.org/browse/REDBACK-197
> And the patch is: redback-ldap-limit-attributes.patch
>
> The second patch was a try to implement UserQuery in order to filter using
> LDAP query.
>
> The first patch is very small and I hope it will be included in next
> Continuum/Archiva release. The second one is a bigger change and may need
> additional work so I don't expect it to be included, but it may be used as a
> basis for additional work.
>
> Best regards,
>
> _________________________________________________________
>
> Julien HENRY / Capgemini SUD / Nice
> Consultant Technologie & Architecture
> Tel : + 33 4 93 72 41 56 / Fax : + 33 4 93 21 02 95 / www.capgemini.com
> Porte de l'Arénas - Entrée B | 455 Promenade des Anglais | 06200 Nice
> Together. Free your energies
> _________________________________________________________
>
>
>
>
> -----Message d'origine-----
> De : Emmanuel Venisse [mailto:emmanuel.venisse@gmail.com]
> Envoyé : mercredi 25 février 2009 07:04
> À : users@continuum.apache.org
> Cc : Deneux, Christophe
> Objet : Re: LDAP integration feedback
>
> Your help is welcome (documentation improvement and/or patches)
>
> About pagination, it isn't possible with LDAP, but we can limit the result
> to 100 and allow users to change the limit.
>
> Yes, Archiva works in a similar way because it use th same framework
> (Redback).
>
> Emmanuel
>
> On Tue, Feb 24, 2009 at 5:41 PM, Henry, Julien
> <ju...@capgemini.com>wrote:
>
> > Hi Continuum users and devs,
> >
> >
> >
> > I would like to share my experimentations regarding Continuum (and I
> > suppose Archiva works the same) integration with a corporate LDAP (Active
> > Directory in my case).
> >
> >
> >
> > After following [1], authentication seemed to work fine.
> > redback.default.admin was able to administrate Continuum, and any other
> user
> > from the AD was able to login and was considered as guest. There is no
> more
> > "register" link, only "authenticate".
> >
> >
> >
> > My next test was to try adding some roles to users. After logging in with
> > my admin account, I tried to click on "Users" menu. But after a very long
> > time (timeout?) the page appears without any user. Even trying to filter
> on
> > a specific user name returned no result.
> >
> >
> >
> > The reason seemed to be that my company LDAP was too big. After changing
> > configuration to a small subdirectory of the LDAP (with less than 100
> > users), it worked as expected.
> >
> >
> >
> > I'm currently testing with Continuum 1.3.1 and I would like to know if
> any
> > progress was done concerning LDAP integration? If not I would like to
> know
> > what I can do to help. The possible improvements I can see are:
> >
> > - improve the filter functionality to construct a dynamic LDAP
> > query instead of (I guess) retrieving the whole LDAP then filtering in
> > memory
> >
> > - improve the user screen by limiting the number of results from
> > LDAP query (I don't know if pagination is possible with LDAP)
> >
> >
> >
> > Best regards,
> >
> >
> >
> >
> >
> > [1] http://redback.codehaus.org/integration/ldap.html
> >
> >
> >
> > _________________________________________________________
> >
> > Julien HENRY / *Capgemini SUD **/* Nice
> > Consultant Technologie & Architecture
> > Tel : + 33 4 93 72 41 56 / Fax : + 33 4 93 21 02 95 / www.capgemini.com
> > Porte de l'Arénas - Entrée B | 455 Promenade des Anglais | 06200 Nice
> > *Together. Free your energies*
> > _________________________________________________________
> >
> >
> >
> > This message contains information that may be privileged or confidential
> > and is the property of the Capgemini Group. It is intended only for the
> > person to whom it is addressed. If you are not the intended recipient,
> you
> > are not authorized to read, print, retain, copy, disseminate, distribute,
> or
> > use this message or any part thereof. If you receive this message in
> error,
> > please notify the sender immediately and delete all copies of this
> message.
> >
> >
>
>
>
>
>
>
> This message contains information that may be privileged or confidential
> and is the property of the Capgemini Group. It is
> intended only for the person to whom it is addressed. If you are not the
> intended recipient, you are not authorized to
> read, print, retain, copy, disseminate, distribute, or use this message or
> any part thereof. If you receive this message
> in error, please notify the sender immediately and delete all copies of
> this message.
>
>