This is an excellent idea. I would love to see a common security model that can be used for custom, as well as open-source, web applications.
We use Active Directory (LDAP) for our authentication. AD is also used for most of our authorization. Group membership determines what users can access on our intranet. I think this system should stand alone where it could be used as a general authentication system for secured web sites. Let me know if there is anything I can contribute. M!ke -----Original Message----- From: Robert Munn [mailto:[EMAIL PROTECTED] Sent: Friday, October 14, 2005 7:52 PM To: CF-Talk Subject: Pluggable Security system/ app architecture (WAS: Re: Any Interest in a Completely Free CFML Calendar?) Your question brings up a question I have been thinking about for some time. At various times over the years I have used and integrated third party components (like calendaring) and applications into my solutions. The two biggest stumbling blocks are always the same: 1. Apps written in their own frameworks, no framework, etc. That's fine for black-box code but not for something you may need to modify. 2. Full blown apps use their own user and security models, so plugging them into an existing application tends to mean either integrating at the database layer or bolting on something external. These problems are hardly unique to CF or even Web development. A common solution in enterprise apps is to bolt everything to LDAP/Active Directory, but that is hardly ever used with externally facing apps. My question is, does anyone have an interest in building a pluggable application architecture around a common identity management system, or has anyone seen something like this for CF or other dev. platforms (other than LDAP)? Or is LDAP being used externally now? The basic idea would be to build an identity management system that could link into a pluggable application architecture. The whole system could be exposed through a Web services API that would allow you to register any third party app as a client of the identity management system. Adapters could be built to link into data providers like LDAP servers if that is desirable functionality. Thoughts? Rob ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Find out how CFTicket can increase your company's customer support efficiency by 100% http://www.houseoffusion.com/banners/view.cfm?bannerid=49 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:221098 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
