This looks very promising. Marvin, do you have any docs on how ldaptive manages password policy? A quick google search turned this up: http://www.ldaptive.org/docs/guide/operations/extended/passwordmodify
I am interested to see if we can leverage its features to implement a better LPPE. I am casually working on CAS-1121 [1] and am wondering if I should hold off on further changes until ldaptive becomes a merge candidate. -Misagh [1] https://issues.jasig.org/browse/CAS-1121 > -----Original Message----- > From: Marvin Addison [mailto:[email protected]] > Sent: Friday, October 19, 2012 9:27 AM > To: [email protected] > Subject: [cas-dev] Heads Up on LDAP Integration Work > > I wanted to offer a heads up about CAS-ldaptive [1] integration work that I'm > pursuing: > > https://github.com/serac/cas-server-integration-ldaptive > > This is still a work in progress, but we will begin testing shortly and > provided testing goes well we will eventually switch to this library for LDAP > integration for our CAS deployment at Virginia Tech. > A few notable benefits: > > - First-class support for advanced LDAP features (e.g. esoteric controls > including ppolicy, all auth mechanisms) > - Robust pooling and error handling > - Pluggable LDAP provider mechanism (JNDI, UnboundID, Apache to name a few) > > It's worth noting that Shibboleth and Grouper use ldaptive (or its ancestor, > vt-ldap) for LDAP integration. > > It's my intention to offer this module as a replacement for cas-server- > support-ldap at some future date. I'll provide a full list of benefits and > some performance analysis at that time. > > M > > [1] http://www.ldaptive.org/ > > -- > You are currently subscribed to [email protected] as: > [email protected] To unsubscribe, change settings or access archives, see > http://www.ja-sig.org/wiki/display/JSG/cas-dev -- You are currently subscribed to [email protected] as: [email protected] To unsubscribe, change settings or access archives, see http://www.ja-sig.org/wiki/display/JSG/cas-dev
