This is an excellent idea.  I would love to see a common security model
that can be used for custom, as well as open-source, web applications.

We use Active Directory (LDAP) for our authentication.  AD is also used
for most of our authorization.  Group membership determines what users
can access on our intranet. 

I think this system should stand alone where it could be used as a
general authentication system for secured web sites.

Let me know if there is anything I can contribute.

M!ke

-----Original Message-----
From: Robert Munn [mailto:[EMAIL PROTECTED] 
Sent: Friday, October 14, 2005 7:52 PM
To: CF-Talk
Subject: Pluggable Security system/ app architecture (WAS: Re: Any
Interest in a Completely Free CFML Calendar?)

Your question brings up a question I have been thinking about for some
time. At various times over the years I have used and integrated third
party components (like calendaring) and applications into my solutions.
The two biggest stumbling blocks are always the same:

1. Apps written in their own frameworks, no framework, etc. That's fine
for black-box code but not for something you may need to modify.
 
2. Full blown apps use their own user and security models, so plugging
them into an existing application tends to mean either integrating at
the database layer or bolting on something external.

These problems are hardly unique to CF or even Web development. A common
solution in enterprise apps is to bolt everything to LDAP/Active
Directory, but that is hardly ever used with externally facing apps. 

My question is, does anyone have an interest in building a pluggable
application architecture around a common identity management system, or
has anyone seen something like this for CF or other dev. platforms
(other than LDAP)? Or is LDAP being used externally now? 

The basic idea would be to build an identity management system that
could link into a pluggable application architecture. The whole system
could be exposed through a Web services API that would allow you to
register any third party app as a client of the identity management
system. Adapters could be built to link into data providers like LDAP
servers if that is desirable functionality.

Thoughts? 

Rob

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~|
Find out how CFTicket can increase your company's customer support 
efficiency by 100%
http://www.houseoffusion.com/banners/view.cfm?bannerid=49

Message: http://www.houseoffusion.com/lists.cfm/link=i:4:221098
Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4
Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4
Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
Donations & Support: http://www.houseoffusion.com/tiny.cfm/54

Reply via email to