Re:[uportal-dev] [portlet-dev] AD groups person attribute DAO for person directory 1.5?

[Susan Bramhall]

Sent to wrong list!  So sorry.  Intended for uportal-dev. Susan Bramhall wrote: We are very happy with the "Smart" LDAP group discovery function and are using it our AD groups.  We ran into a problem though because we had far too many groups in our AD to be returned on one search.  Instead of adding logic to read all groups we wrote a new PersonAttributeDAO that returns the user groups from one configurable OU.  This allows us to maintain a "Portal" OU containing only groups of interest to the portal.  The portal groups in turn contain the "real" groups maintained for application access control.  A couple of weeks ago I committed that class to the sandbox because I thought it might be useful to answer someone else's question.  I would much prefer to commit this class to the person directory trunk so that it can become part of the Person Directory 1.5 release.  Our documentation for use of AD groups in the portal at Yale is on our wiki here: http://tp.its.yale.edu/confluence/display/YIP/AD+Groups.  Do folks think this would be a useful contribution?  It would certainly be helpful for us to have it in the main person directory library. I'd also like to contribute our JndiMediatingBean that allows us to run commands such as crn-import when no jndi environment is available. Susan -- -- Susan Bramhall (susan.bramh...@yale.edu) Senior Developer, Infrastructure Systems and Architecture (formerly T&P) Yale University Information Technology Services (ITS) 25 Science Park, 150 Munson St, New Haven, CT 06520 Phone:  203 432 6697 -- You are currently subscribed to uportal-dev@lists.ja-sig.org as: arch...@mail-archive.com To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/uportal-dev