We have a client that uses Sun's Java Access Manager (now OpenSSO) to 
authenticate against LDAP and we built this to work with it: 
http://github.com/saturnflyer/radiant-header_authorize-extension

And in our altered_beast implementation, we use 
http://github.com/saturnflyer/java_access_manager_plugin but we did modify the 
source of altered_beast to look to another location for users. You could 
probably use a plugin to modify the objects instead, but hacking the source was 
the simplest option at the time.

The access manager sends authentication details to Apache and we have 4 rails 
apps and 1 php wiki sitting behind it all. If you use something like OpenSSO, 
you can use whatever apps you want and just override their authentication 
scheme to gather info from the headers.

Jim Gay
http://www.saturnflyer.com

On Jan 5, 2010, at 10:33 AM, Rob Levin wrote:

> Basic use case:
> User logs in --> ldap verified --> Rails/Radiant Auth
> (restful_authentication or similar) --> user goes to a Forum (without having
> to log in again)
> 
> First, is there an extensions that I could hook in to that wraps something
> like restful_auth? (member extension won't work because admin must create
> user) I could probably just utilize the ruby-net-ldap stuff myself provided
> I could hook in to something like this.
> 
> Second, if I use beastly, provided user has been authenticated (via whatever
> is the answer to my first question), will beastly/altered beast "recognize"
> that user (achieving single sign on)?
> 
> Feedback/thoughts? If not, I'll probably have to supplant and use our
> already existing python/django ldap code, use a django forum, tweak Apache
> virtual hosts -- you catch my drift? Thanks all ;-)
> 
> PS
> Basic forum requirements:
> 1. Data Migration: How do they store the data? DB not flat files? MySQL?
> 2. User Management: Single login via LDAP -> whatever (Rails session,etc.)
> 3. Subscriptions & RSS Integration
> 4. Easy to skin (CSS, etc.)
> 5. Attachments
> _______________________________________________
> Radiant mailing list
> Post:   Radiant@radiantcms.org
> Search: http://radiantcms.org/mailing-list/search/
> Site:   http://lists.radiantcms.org/mailman/listinfo/radiant





_______________________________________________
Radiant mailing list
Post:   Radiant@radiantcms.org
Search: http://radiantcms.org/mailing-list/search/
Site:   http://lists.radiantcms.org/mailman/listinfo/radiant

Reply via email to