Tim Endres wrote:
>
> > So when the app creates a new user it inserts a new entry into both
> > LDAP and into a table in the DB, maybe "user distingished name" (DN)
> > into table USERS...
>
> We have one LDAP context that tells us where the DB is.
>
> We then use a DB entry to set the root "user context" for our users.
>
> Then, all users are relative to that root context, and the relative
> path is what we store in the DB for each user. Thus, I can change
> the place that users are kept under LDAP, and only have to change
> one row in the database, not every user.
Beautiful.
That last part of the DN, aka as RDN, or Relative DN, is all you need
provided you already know the user's context. That way you minimize
dependencies (and also keep the RDBMS key size smaller).
arkin
>
> tim.
> Tim Endres - [EMAIL PROTECTED]
> ICE Engineering, Inc. - http://www.icetoo.com/
> "USENET - a slow moving self parody." - Peter Honeyman
>
> ===========================================================================
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff EJB-INTEREST". For general help, send email to
> [EMAIL PROTECTED] and include in the body of the message "help".
--
----------------------------------------------------------------------
Assaf Arkin www.exoffice.com
CTO, Exoffice Technologies, Inc. www.exolab.org
===========================================================================
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff EJB-INTEREST". For general help, send email to
[EMAIL PROTECTED] and include in the body of the message "help".
