Hash: SHA1

when necessary. (How hard would it be to authenticated against zope.org via ldap ?)

The LDAP server is on the private network inside the zope.org "cluster" and not reachable by the outside world, so as of right now that's not possible.

If we continue down the path of microsites the issue of shared authentication will become more and more urgent.

If LDAP is still an option (I know quite a few people don't like it because they perceive it as complicated or hard to wrap ones brain around) the first step would be to set up a central LDAP server instance that can be reached over the internet by the different microsites. This can be bootstrapped with a data export from the old zope.org server, not a big issue. There might be an issue with latency if the geographically widely dispersed microsites don't have excellent network connectivity towards that central LDAP server, which in turn can be solved by LDAP slaves closer to the microsite host.

From that description you'll see an obvious cost/benefit issue for each microsite that has to be considered carefully, as the cost also involves setting up and maintaining the LDAP client pieces on the microsite host.


Version: GnuPG v1.4.1 (Darwin)

Zope-web maillist  -  Zope-web@zope.org

Reply via email to