Re: [Radiant] ldap login and forum
We have a client that uses Sun's Java Access Manager (now OpenSSO) to authenticate against LDAP and we built this to work with it: http://github.com/saturnflyer/radiant-header_authorize-extension And in our altered_beast implementation, we use http://github.com/saturnflyer/java_access_manager_plugin but we did modify the source of altered_beast to look to another location for users. You could probably use a plugin to modify the objects instead, but hacking the source was the simplest option at the time. The access manager sends authentication details to Apache and we have 4 rails apps and 1 php wiki sitting behind it all. If you use something like OpenSSO, you can use whatever apps you want and just override their authentication scheme to gather info from the headers. Jim Gay http://www.saturnflyer.com On Jan 5, 2010, at 10:33 AM, Rob Levin wrote: > Basic use case: > User logs in --> ldap verified --> Rails/Radiant Auth > (restful_authentication or similar) --> user goes to a Forum (without having > to log in again) > > First, is there an extensions that I could hook in to that wraps something > like restful_auth? (member extension won't work because admin must create > user) I could probably just utilize the ruby-net-ldap stuff myself provided > I could hook in to something like this. > > Second, if I use beastly, provided user has been authenticated (via whatever > is the answer to my first question), will beastly/altered beast "recognize" > that user (achieving single sign on)? > > Feedback/thoughts? If not, I'll probably have to supplant and use our > already existing python/django ldap code, use a django forum, tweak Apache > virtual hosts -- you catch my drift? Thanks all ;-) > > PS > Basic forum requirements: > 1. Data Migration: How do they store the data? DB not flat files? MySQL? > 2. User Management: Single login via LDAP -> whatever (Rails session,etc.) > 3. Subscriptions & RSS Integration > 4. Easy to skin (CSS, etc.) > 5. Attachments > ___ > Radiant mailing list > Post: Radiant@radiantcms.org > Search: http://radiantcms.org/mailing-list/search/ > Site: http://lists.radiantcms.org/mailman/listinfo/radiant ___ Radiant mailing list Post: Radiant@radiantcms.org Search: http://radiantcms.org/mailing-list/search/ Site: http://lists.radiantcms.org/mailman/listinfo/radiant
Re: [Radiant] ldap login and forum
Rob Levin wrote: > Basic use case: > User logs in --> ldap verified --> Rails/Radiant Auth > (restful_authentication or similar) --> user goes to a Forum (without having > to log in again) > > First, is there an extensions that I could hook in to that wraps something > like restful_auth? (member extension won't work because admin must create > user) I could probably just utilize the ruby-net-ldap stuff myself provided > I could hook in to something like this. > > Second, if I use beastly, provided user has been authenticated (via whatever > is the answer to my first question), will beastly/altered beast "recognize" > that user (achieving single sign on)? > > Feedback/thoughts? If not, I'll probably have to supplant and use our > already existing python/django ldap code, use a django forum, tweak Apache > virtual hosts -- you catch my drift? Thanks all ;-) > > PS > Basic forum requirements: > 1. Data Migration: How do they store the data? DB not flat files? MySQL? > 2. User Management: Single login via LDAP -> whatever (Rails session,etc.) > 3. Subscriptions & RSS Integration > 4. Easy to skin (CSS, etc.) > 5. Attachments I'd love to hear what you come up with, but for what it's worth, I'm using Simple Machines Forum on my site alongside a Radiant install. There's currently no integration between the Radiant site (www.t-engine.info) and the SMF Forum (bbs.t-engine.info) - it meets most of your requirements, but unsure about #2 cos I haven't really checked. However, SMF claims to be good and easy to integrate against (it's PHP, mind you) - it also apparently does expose its authentication API but I haven't tried. I do hope that you'll share what you settle on. Cheers, Mohit. 1/5/2010 | 11:45 PM. ___ Radiant mailing list Post: Radiant@radiantcms.org Search: http://radiantcms.org/mailing-list/search/ Site: http://lists.radiantcms.org/mailman/listinfo/radiant
[Radiant] ldap login and forum
Basic use case: User logs in --> ldap verified --> Rails/Radiant Auth (restful_authentication or similar) --> user goes to a Forum (without having to log in again) First, is there an extensions that I could hook in to that wraps something like restful_auth? (member extension won't work because admin must create user) I could probably just utilize the ruby-net-ldap stuff myself provided I could hook in to something like this. Second, if I use beastly, provided user has been authenticated (via whatever is the answer to my first question), will beastly/altered beast "recognize" that user (achieving single sign on)? Feedback/thoughts? If not, I'll probably have to supplant and use our already existing python/django ldap code, use a django forum, tweak Apache virtual hosts -- you catch my drift? Thanks all ;-) PS Basic forum requirements: 1. Data Migration: How do they store the data? DB not flat files? MySQL? 2. User Management: Single login via LDAP -> whatever (Rails session,etc.) 3. Subscriptions & RSS Integration 4. Easy to skin (CSS, etc.) 5. Attachments ___ Radiant mailing list Post: Radiant@radiantcms.org Search: http://radiantcms.org/mailing-list/search/ Site: http://lists.radiantcms.org/mailman/listinfo/radiant