directory-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alex Karasulu <akaras...@gmail.com>
Subject Re: Embedded ApacheDS 1.5 as a Tomcat Realm
Date Tue, 02 Jun 2009 04:37:11 GMT
Yes very interesting indeed.  I agree with the interoperability piece.  I
also think we can have a misc package for distribution with things like
these interop nick nacks.

Great work!

Alex

On Tue, May 26, 2009 at 4:18 AM, Emmanuel Lecharny <elecharny@apache.org>wrote:

> Hi Stefan
>
> this is an interesting piece of work.
>
> I think it deserves to be put on the 'interoperability' page on our site (
> http://cwiki.apache.org/DIRxINTEROP/), which need a *big* improvement btw
> !
>
> Many tahnks for the good work !
>
>
> Stefan Zoerner wrote:
>
>> Hi all,
>>
>> I have "wrapped" ApacheDS 1.5.5 as an Apache Tomcat Realm.
>>
>> Source code (a Maven2 project) is in my sandbox:
>>
>> https://svn.apache.org/repos/asf/directory/sandbox/szoerner/apacheds-tomcatrealm
>>
>> What is it?
>>
>> Within Apache Tomcat, a realm is (cite from Website) a "database" of user
>> names and passwords that identify valid users of a web application (or set
>> of web applications), plus an enumeration of the list of roles associated
>> with each valid user.
>>
>> In order to use Apache Directory Server (ApacheDS) as a realm, the
>> straight forward approach is to use the JNDIRealm shipped with Tomcat. It
>> can handle arbitrary LDAP servers, among them ApacheDS.
>>
>> Because ApacheDS is 100% pure Java and embeddable, there is another
>> option: Implement the Realm interface from Apache Tomcat and run within
>> Tomcat. There are (at least) two interesting things about this approach:
>>
>> 1. Tomcat can use ApacheDS without the wire protocol, because the realm
>> has a handle to the "in process" API of ApacheDS
>>
>> 2. ApacheDS runs within Tomcat and starts and stops automatically along
>> with the web application server
>>
>> While the first point promises some performance advantages, which are
>> irrelevant in most situations (because LDAP servers like ApacheDS are
>> optimized for read operations anyway), the second reason makes this approach
>> a good option for development environments.
>>
>> Learn more about it (I have started a minimal documentation) here
>>
>> http://cwiki.apache.org/confluence/display/DIRxSBOX/ApacheDS+as+a+Tomcat+Realm
>>
>> I hope, some people think it is useful. If so, we can perhaps create an
>> official artifact out of it, later on.
>>
>> Any feedback is highly appreciated.
>>
>> Greetings from Hamburg,
>>    Stefan
>>
>>
>>
>>
>
> --
> --
> cordialement, regards,
> Emmanuel L├ęcharny
> www.iktek.com
> directory.apache.org
>
>
>


-- 
Alex Karasulu
My Blog :: http://www.jroller.com/akarasulu/
Apache Directory Server :: http://directory.apache.org
Apache MINA :: http://mina.apache.org

Mime
View raw message