[ http://issues.apache.org/jira/browse/JS2-188?page=comments#action_58969 ] mike long commented on JS2-188: -------------------------------
Following are some questions to those of you interested in LDAP authentication and authorization in Jetspeed-2. I have spent a some time this week reading Inside Java 2 Platform Security, realizing that I need to understand the design ideas for J2 security. Questions: 1)Should LDAP authentication support security credentials other than a password? My current LDAP authentication implementation stores users and passwords as objects of class InetOrgPerson. The password credential is stored as an attribute of class InetOrgPerson. 2)Given the data model for J2 security, do you think I should do a 1 for 1 mapping of security tables to LDAP classes? Please study the J2 security data model and suggest a mapping for the tables to LDAP classes. 3) I have not had time to understand the relationship of the security data model to the SSO data model. What issues will I encounter if I implement the security data model in LDAP and leave the SSO data model as is? I will be gone on business until late next week. I look forward to your comments and suggestions. Mike > Implement the LDAP > ------------------ > > Key: JS2-188 > URL: http://issues.apache.org/jira/browse/JS2-188 > Project: Jetspeed 2 > Type: Improvement > Components: Security > Reporter: J, Edgar Zavala > Attachments: jetspeed-2-ldap-authentication.tar.gz > > Implement the LDAP integration using the SPI, provide the LDAP authenitcation > option. > TODO: > 1.- Complete the current implementation and complete the David work in: > a) org.apache.jetspeed.security.spi.impl.LdapCredentialHandler > b) org.apache.jetspeed.security.spi.impl.LdapUserSecurityHandler -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - If you want more information on JIRA, or have a bug to report see: http://www.atlassian.com/software/jira --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
