portals-jetspeed-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "mike long (JIRA)" <jetspeed-...@jakarta.apache.org>
Subject [jira] Commented: (JS2-188) Implement the LDAP
Date Thu, 10 Feb 2005 22:24:13 GMT
     [ http://issues.apache.org/jira/browse/JS2-188?page=comments#action_58969 ]
mike long commented on JS2-188:

Following are some questions to those of you interested in LDAP authentication and authorization
in Jetspeed-2. I have spent a some time this week reading Inside Java 2 Platform Security,
realizing that I need to understand the design ideas for J2 security. 

1)Should LDAP authentication support security credentials other than a password? My current
LDAP authentication implementation stores users and passwords as objects of class InetOrgPerson.
The password credential is stored as an attribute of class InetOrgPerson.

2)Given the data model for J2 security, do you think I should do a 1 for 1 mapping of security
tables to LDAP classes? Please study the J2 security data model and suggest a mapping for
the tables to LDAP classes. 

3) I have not had time to understand the relationship of the security data model to the SSO
data model. What issues will I encounter if I implement the security data model in LDAP and
leave the SSO data model as is?

I will be gone on business until late next week. I look forward to your comments and suggestions.


> Implement the LDAP
> ------------------
>          Key: JS2-188
>          URL: http://issues.apache.org/jira/browse/JS2-188
>      Project: Jetspeed 2
>         Type: Improvement
>   Components: Security
>     Reporter: J, Edgar Zavala
>  Attachments: jetspeed-2-ldap-authentication.tar.gz
> Implement the LDAP integration using the SPI, provide the LDAP authenitcation option.
> 1.- Complete the current implementation and complete the David work in:
>    a) org.apache.jetspeed.security.spi.impl.LdapCredentialHandler
>    b) org.apache.jetspeed.security.spi.impl.LdapUserSecurityHandler

This message is automatically generated by JIRA.
If you think it was sent incorrectly contact one of the administrators:
If you want more information on JIRA, or have a bug to report see:

To unsubscribe, e-mail: jetspeed-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-dev-help@jakarta.apache.org

View raw message