I read more on JAAS and saw comments to the effect of: best not to use it.
I got LDAP to AD working ok, so now I need to be able to dynamically re-point
to different LDAP servers .
So:
Is there a way to use LDAP server properties sourced from a
database or other code-source, rather than statically included as .xml or
.properties in the .war ?
Failing that, and given that I re-deploy every time I add another possible LDAP
server -- is there a way I might swap LDAP server property sets based upon an
URL item ?
I've pretty much given up on SPNEGO for now - I need to get more of the overall
solution in place and come to understand CAS better first.
I've seen (but can't find now) comments from people who have "written Beans" to
change CAS behavior - where might I learn more about that way of doing things ?
Thanks
Al;
Allen Joslin
ePath Learning, Inc.
300 State Street, Suite 400
New London, CT 06320
(860) 444-7900 x-43
[email protected]<mailto:[email protected]>
* ePath Learning has been recognized on the Inc. 500/5000 list of the
fastest-growing private companies in America for the past five years, and is a
recipient of the 2013 Marcum Tech Top 40 award, in addition to receiving
multiple product of the year and technology excellence awards.
This message contains information which may be confidential and/or privileged.
Unless you are the intended recipient (or authorized to receive for the
intended recipient), you may not read, use, copy or disclose to anyone the
message or any information contained in the message. If you have received the
message in error, please advise the sender by reply e-mail and delete the
message and any attachment(s) thereto without retaining any copies.
From: Al Joslin
Sent: Monday, December 30, 2013 12:33 PM
To: [email protected]
Subject: multiple login schemes, what is best practice ?
I have to support multiple login schemes: Local LDAP. Remote LDAP, Local AD,
multiple Remote AD's
I just stumbled upon a phrase in a comment on the JAAS page in an example
codeblock --> Login Configuration for JAAS. First try Kerberos, then LDAP, then
AD
I have the mandate to support multiple Remote authenticators, not all of which
will use the same scheme (some LDAP, some AD, some Federated, etc...
I want to trigger these different configs off of something in the URL line -
can this be done ?
What is best practice in this case ?
Thanks!
Allen Joslin
ePath Learning, Inc.
300 State Street, Suite 400
New London, CT 06320
(860) 444-7900 x-43
[email protected]<mailto:[email protected]>
* ePath Learning has been recognized on the Inc. 500/5000 list of the
fastest-growing private companies in America for the past five years, and is a
recipient of the 2013 Marcum Tech Top 40 award, in addition to receiving
multiple product of the year and technology excellence awards.
This message contains information which may be confidential and/or privileged.
Unless you are the intended recipient (or authorized to receive for the
intended recipient), you may not read, use, copy or disclose to anyone the
message or any information contained in the message. If you have received the
message in error, please advise the sender by reply e-mail and delete the
message and any attachment(s) thereto without retaining any copies.
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
