You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@directory.apache.org by Oblio Leitch <ob...@gmail.com> on 2015/10/01 19:18:47 UTC
need help simulating AD
I'm hoping someone can help me get ADS setup to simulate Active Directory.
I'm actually just trying to use it embedded to perform unit testing, but I
don't know what I need to do to pull in custom attributes and to accept a
bindPrincipal in the form of an email address. Is this possible?
Re: need help simulating AD
Posted by Emmanuel Lécharny <el...@gmail.com>.
Le 03/10/15 08:11, Kiran Ayyagari a écrit :
> On Sat, Oct 3, 2015 at 1:39 AM, Oblio Leitch <ob...@gmail.com> wrote:
>
>> I'd love to contribute, really would. I don't have a clue how to
>> accomplish what I'd like to do. That's why I'm reaching out to the
>> forum...
>>
> the other option is to search for the user using a different (admin)
> connection
> and then bind using that user's DN
This is clearly an excellent workaround !
Nevertheless, a dedicated AD Authenticator might be useful at some point
in the future.
Oblio, I strongly suggest that you at least create aJIRA requesting for
such a feature.
Thanks !
Re: need help simulating AD
Posted by Kiran Ayyagari <ka...@apache.org>.
On Sat, Oct 3, 2015 at 1:39 AM, Oblio Leitch <ob...@gmail.com> wrote:
> I'd love to contribute, really would. I don't have a clue how to
> accomplish what I'd like to do. That's why I'm reaching out to the
> forum...
>
the other option is to search for the user using a different (admin)
connection
and then bind using that user's DN
>
> On Fri, Oct 2, 2015 at 12:09 PM, Emmanuel Lécharny <el...@gmail.com>
> wrote:
>
> > Le 02/10/15 16:29, Oblio Leitch a écrit :
> > > That's a shame.
> >
> > What's a shame is that we don't have a contributor to add this feature
> > to the code base. And trust me on that, it's not really such a big deal
> > : just a matter of defining a dedicated Authenticator for this use case.
> >
> > Now, you have a choice : being a lurker, or participate and make the
> > code better. Your choice...
> >
> >
>
--
Kiran Ayyagari
http://keydap.com
Re: need help simulating AD
Posted by Oblio Leitch <ob...@gmail.com>.
I'd love to contribute, really would. I don't have a clue how to
accomplish what I'd like to do. That's why I'm reaching out to the forum...
On Fri, Oct 2, 2015 at 12:09 PM, Emmanuel Lécharny <el...@gmail.com>
wrote:
> Le 02/10/15 16:29, Oblio Leitch a écrit :
> > That's a shame.
>
> What's a shame is that we don't have a contributor to add this feature
> to the code base. And trust me on that, it's not really such a big deal
> : just a matter of defining a dedicated Authenticator for this use case.
>
> Now, you have a choice : being a lurker, or participate and make the
> code better. Your choice...
>
>
Re: need help simulating AD
Posted by Emmanuel Lécharny <el...@gmail.com>.
Le 02/10/15 16:29, Oblio Leitch a écrit :
> That's a shame.
What's a shame is that we don't have a contributor to add this feature
to the code base. And trust me on that, it's not really such a big deal
: just a matter of defining a dedicated Authenticator for this use case.
Now, you have a choice : being a lurker, or participate and make the
code better. Your choice...
Re: need help simulating AD
Posted by Oblio Leitch <ob...@gmail.com>.
That's a shame. I'm using Spring
Security's ActiveDirectoryLdapAuthenticationProvider, so I can't just
change the binding style without rewriting the authentication system. I
guess I'm just surprised that there's not more need for an embedded unit
test for AD authentication.
On Fri, Oct 2, 2015 at 4:31 AM, Kiran Ayyagari <ka...@apache.org> wrote:
> On Fri, Oct 2, 2015 at 1:18 AM, Oblio Leitch <ob...@gmail.com>
> wrote:
>
> > I'm hoping someone can help me get ADS setup to simulate Active
> Directory.
> > I'm actually just trying to use it embedded to perform unit testing, but
> I
> > don't know what I need to do to pull in custom attributes and to accept a
> > bindPrincipal in the form of an email address. Is this possible?
> >
> nope, not without changing the internals of the server.
> the easiest path might be to always use SASL bind and change one of the
> SASL
> handler e.x DigestMd5CallbackHandler to lookup a user based on his email
> address
>
>
>
> --
> Kiran Ayyagari
> http://keydap.com
>
Re: need help simulating AD
Posted by Kiran Ayyagari <ka...@apache.org>.
On Fri, Oct 2, 2015 at 1:18 AM, Oblio Leitch <ob...@gmail.com> wrote:
> I'm hoping someone can help me get ADS setup to simulate Active Directory.
> I'm actually just trying to use it embedded to perform unit testing, but I
> don't know what I need to do to pull in custom attributes and to accept a
> bindPrincipal in the form of an email address. Is this possible?
>
nope, not without changing the internals of the server.
the easiest path might be to always use SASL bind and change one of the SASL
handler e.x DigestMd5CallbackHandler to lookup a user based on his email
address
--
Kiran Ayyagari
http://keydap.com