directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Quanah Gibson-Mount <>
Subject Re: Building an LDAP server is not an easy task (was: Re: [ApacheDS Webapps] Use Cases)
Date Mon, 21 May 2007 23:20:34 GMT

--On May 21, 2007 6:19:27 PM -0400 Alex Karasulu <> 

> Yeah this is not going to happen or if it does it will take another 2
> decades.  The key to having
> an LDAP reniassance is simple really.  Here's the formula IMO:
> (1) Resusitate some critical X.500 concepts that the LDAP creators
> chopped out of LDAP
>       to oversimplify it: namely talking about the administrative model
> here and not OSI stack.
>       Kurt began doing this with couple RFCs like the one for subentries
> and collective attributes.
> (2) Provide some solid tooling to simplify and accomodate the lack of
> knowledge around LDAP
>       and X.500 concepts which LDAP is built upon.  The RDBMS world is
> rich with tooling support
>       yet the LDAP world has virtually none.
> (3) Provide the rich integration tier constructs many RDBMS developers
> are accustomed to yet
>       transposed to the LDAP plane.  These constructs include:
>       (a) LDAP Stored Procedures
>       (b) LDAP Triggers
>       (c) LDAP Views
>       (d) LDAP Queues (to interface with MOMs)
> *** incidentally we use the X.500 admin model to implement these features
> If these critical peices of the puzzle are solved then we'll see the
> Directory come back as the swiss army
> knife of integration it was intended to be.  Right now Directories are
> stuck serving out white pages and
> admins are still scratching their heads when trying to figure out how to
> remove users from groups when
> users are deleted to maintain referrential integrity.  Why have we messed
> this up so bad?
> The key to solving the integration problems with LDAP which will plauge
> the enterprise for the next 30 years
> lie in these critical features.  If we cannot see this and correct our
> path together then our chances
> of renewing the demand for LDAP are lost as new half baked technologies
> emerge to solve these problems
> and clutter the vision of those that should be deciding on LDAP.

Works for me. :)


Quanah Gibson-Mount
Principal Software Engineer
Zimbra, Inc
Zimbra ::  the leader in open source messaging and collaboration

View raw message