> On Feb 20, 2017, at 5:04 PM, [email protected] wrote: > > Is there any support for policy enforcement points in C#? If not, how > difficult would it be to create it?
Welcome Roger, the short answer is ‘no’ there isn’t a C# interface for the RBAC system management APIs and it would be a significant effort to create one. There is a glimmer of light however, and it has to do with the OpenLDAP accelerator overlay. To learn more about it, check out a youtube video of a presentation I gave at last year’s apachecon: https://www.youtube.com/watch?v=Mqcb_T8WMMM&t=1822s The existing code for the accelerator is comprised of the following: 1. OpenLDAP slapo-rbac overlay (serverside) 2. rbac accelerator java bindings (clientside) 3. rbac accelerator C bindings (clientside) This source code has not yet been released, but will be — soon (a week or two). So, if you are willing to wait a bit, are using openldap server, can use C, and can tolerate some bugs -- you’re in luck. After watching the video you’ll understand it is much easier to create client bindings because most of the code resides on the server. The client is merely formatting the extended LDAP messages to/from the server. This means if you wanted to code your own C# bindings connecting to the rbac accelerator, it would be a much smaller task, than creating something like another fortress. Hope this helps, Shawn
