Hi, I would like to know if this is doable with Apache DS or a ldap library.
I would like to build an application that can offer basic set of functionality to perform LDAP authentication (and maybe password reset) and delegate this to an existing auth service (Keycloak, a user and password database, a simple file, Google Auth, whatever ).
The use case is that some applications work with LDAP auth for unified authentication and don't provide Oauth2 / OpenID connect support.
I would like to deploy keycloak or another IDM server to manage users and offer those applications an ldaps endpoint for which they authenticate.
To my knowledge I would need some sort of **SIMPLE** embedded ldap server that I can map the auth structure to my existing data stored in a DB or a rest service.
User will configure legacy app to sue my ldap Auth server.The auth server will receive auth requests and read data from my real auth service (Keycloak, plain user + pass file, etc ).
This is kind of the reverse of what people are doing (putting OpenID Connect on top of LDAP servers).
The use case is pretty small and I think I could get away with a simple ldap protocol parsing library.
I would like to avoid any unnecessary complexity: ldap schemas, etc. Would this be possible? What should I try ? Thanks, -- Eugen Stan +40770 941 271 / https://www.netdava.com
begin:vcard fn:Eugen Stan n:Stan;Eugen email;internet:eugen.s...@netdava.com tel;cell:+40720898747 x-mozilla-html:FALSE url:https://www.netdava.com version:2.1 end:vcard
--------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@directory.apache.org For additional commands, e-mail: users-h...@directory.apache.org
