[
https://issues.apache.org/jira/browse/CONNECTORS-515?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13446135#comment-13446135
]
Maciej Lizewski commented on CONNECTORS-515:
--------------------------------------------
Ok. I did some more research and found that you can make use of Samba shares
ACE list to bind properly with LDAP authority, but you have to do a little
change to CIFS Connector.
You have to pass "true" to file.getSecurity(true) when fetching ACE's of the
file and then you should call "getAccountName" on SIDs to fetch group names.
Maybe you could add switch in CIFS connectors configuration whether it should
resolve names and use them as authorization tokens or use SIDs. then this
connector would be more flexible and work with ActiveDirectory and LDAP
authorities.
I think I would go this way, and can provide patches for such solution if you
are interested in such modyfication.
> Support also for openldap, not only activedirectory
> ---------------------------------------------------
>
> Key: CONNECTORS-515
> URL: https://issues.apache.org/jira/browse/CONNECTORS-515
> Project: ManifoldCF
> Issue Type: New Feature
> Components: Active Directory authority
> Reporter: Maciej Lizewski
> Priority: Minor
> Attachments: LDAPAuthority.java
>
>
> Current authority supports only ActiveDirectory. Would be nice to have also
> support for plain openLDAP and three kinds of groups:
> - memberOf attribute in user (InetOrgPerson) entry
> - posixGroup entry with memberUid attribute
> - groupOfNames entry with member attribute
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
