Hi Daniel,
One thought could be to use Kerberos V for authentication and use LDAP for
authorisation tied in with pam (all on Linux of course).
Your web application say assuming php is used would call the pam_auth
module, which interrogates Kerberos.
In this way, your web app is loosely coupled form the back-end of LDAP /
Kerberos (although you may need to write an interface program to
facilitate). Nevertheless, it would be worth the effort as you would be
using the 'facade' design pattern and other web app could be used
longside.
This is just a high-level thought for you.
Regards
Gerry
"Daniel M." <[EMAIL PROTECTED]>
09/12/2005 07:59 AM
To
perl-ldap@perl.org
cc
Subject
LDAP storing web accounts...
Problem: Given an application that stores users
accounts in a database table as "user" and "password"
(encrypted of course) what would be the best way to
convert this app to use LDAP.
Do I store the login and password in the LDAP
directory as attributes to a DN such as:
cn=john.doe,cn=webUsers,dn=whatever.com
attributes:
login = string
password = string
Any help or articles would be appreciated. I have
been searching and reading on the web for a while but
have not been able to find a good example or article
on the subject yet.
Thank you.
