Hi all, I need to implement a custom authenticator against LDAP for one sling application. In order to avoid mantain the same users in LDAP and in JCR I would like to implement some "impersonation" mechanism.
In a first approach, I found de OpenID example [1] and try to adapt it to a LDAP scenario. That is, create an AuthenticationHandler to authenticate the user and use the "trusted_credentials_attribute" mechanism to avoid JCR authentication. But I recently found that there are some progress in the user impersonation in Sling[2] and I'm wondering what is the best way to do this? Any hint or experience is welcome, Regards Agus [1] http://sling.apache.org/site/openid-authenticationhandler.html [2] http://www.mail-archive.com/[email protected]/msg01509.html https://issues.apache.org/jira/browse/SLING-1298
